Tuya.com
English
简体中文
Register
Developer Platform
English
简体中文
Register
Developer Platform
Tuya Developer Platform
search
Search By Document Directory
arrDownOverview
Quick Start
arrDownProduct Development
arrDownApp Development
arrDownMiniApp Development
arrDownCloud Development
Pricing
Cloud Integration Solutions
arrDownSmart Home Learning Map
arrDownCustom Development Learning Map
arrDownOperation Guide
arrDownAPI Request
arrDownBest Practice
IoT Core Device Management
IAM Practice
arrDownDevice Control Practice
arrDownIntegrating Home Assistant & Homebridge
Develop Projects on Assets, Users and App
Debug Device Linkage by Virtual Device
Set Postman Environment and Call API Operations
Verify Signature Result
Device Control and Message Subscription Practice
Get Messages by Message Queue
Smart Apartment Practice
Smart Office Practice
OAuth 2.0 Authorization Flow
Device Data Sharing
arrDownCloud Services
arrDownMessage Queue
arrDownStandard Instruction Set
Cloud Development FAQs
Common Parameters
arrDownAI Agent Development
arrDownSaaS Development
arrDownData Services
arrDownProduct Solutions
arrDownOperation Management
arrDownSmart Industries
arrDownManufacturing
API Reference
SDK Reference
Downloads
arrDownService & Support
arrDownLegacy Topics
Tuya Developer PlatformCloud DevelopmentBest PracticeDevice Data Sharing

Device Data Sharing

Last Updated on : 2025-09-12 01:20:55download

Overview

The EU Data Act, fully titled the Regulation on Harmonised Rules on Fair Access to and Use of Data, was formally adopted by the European Commission in November 2023 and entered into force in January 2024. Its main provisions will become fully applicable starting in September 2025.

One of the core objectives of this regulation is to ensure that users (data holders) can fairly and securely access and use the data they generate, which is typically stored by device manufacturers. A key requirement is that users of IoT devices have the right to authorize third-party service providers to access their device data, thereby promoting data-driven innovation and service competition. For more information, visit the official website.

Tuya platform already provides device data sharing services that comply with the EU Data Act, helping OEM/ODM app users and SDK users (data holders) easily fulfill legal obligations for data sharing and enabling third-party companies to utilize device data for developing new services. This topic describes how to configure and use device data sharing.

Terms and definitions

Term Description
End user
 The user of an app. They connect and control devices via the app and are the owners of the device data. Based on the EU Data Act, app users have the right to authorize third parties to access their device data (Hereinafter referred to as User).
App owner The owner of an app. Enterprises that develop and operate apps for device pairing and control are considered data holders (Hereinafter referred to as app owner).
Third-party enterprise An EU-based enterprise that wishes to get end-user device data to provide value-added services, such as data analytics, energy efficiency services, and insurance. Such enterprises might not have a direct commercial relationship with the end user and must get data access through statutory authorization processes.

Prospect customers and regions

In accordance with the requirements of the Data Act, only users and enterprises within the EU region are permitted to share or access device data. Therefore, to use Tuya’s platform services, you must meet the following conditions:

  • The cloud project must be deployed in the Central Europe Data Center.
  • Both the developer account and user account must be registered in the Central Europe Data Center.
  • Enterprise account verification must be completed on the Tuya Developer Platform.
  • Your enterprise must not be included in the gatekeeper list.

After the above conditions are met, you can view project details on the page of Tuya Developer Platform > Project Management and see the service entry.

Procedure

To implement device data sharing, perform the following steps:

  1. The third-party enterprise configures and integrates an H5 authorization page.
  2. The user performs authorization on the authorization page.
  3. The app owner enables authorization.
  4. The third-party enterprise subscribes to cloud services and gets device data.

For more detailed operations, refer to the instructions below.

Configure H5 authorization page

Device data sharing is authorized through the standard OAuth 2.0 protocol. After configuring and generating an H5 authorized login page, the third-party enterprise can integrate this page into your terminals, like the app and control panel. Perform the following steps:

  1. Go to the Tuya Developer Platform > Project Management page, locate the desired project, and then click Open Project in the Operation column to go to the project details page.

    Device Data Sharing

  2. Click the Devices tab and select Central Europe Data Center on the top right corner. On the Link App Account tab, choose Add App Account > App Device Data Sharing.

    Device Data Sharing

  3. On the page of App Device Data Sharing, configure the authorization key and H5 authorization page, and click Save.

    Device Data Sharing

    • Configure an authorization key. The authorization key is the key information for app authorization. For more information about the app key, see App authorization.

    • Configure the authorization page and callback URL. Get the URL to the H5 authorization page.

  4. Once the user gives consent, the OAuth 2.0 authorization code will be sent through this URL and can only be used in the user’s data center.

Authorization process

User authorization process

Open the app, tap + > Scan in the top right corner, and then scan the authorization QR code provided by the third-party enterprise. Perform the following steps to complete authorization.

  1. Enter a mobile phone number to get authorizable apps.

    Device Data Sharing

  2. Select the desired app and proceed to the login page.

    Device Data Sharing

  3. Enter the password to log in, or switch to QR code login.

    Device Data Sharing

  4. After successful login, navigate to the authorization page. Tap Select Device, choose the home and the devices to be shared under that home, and then tap Confirm.

    Device Data Sharing Device Data Sharing

Tap Confirm authorization to complete the authorization. Tuya will return the generated OAuth 2.0 authorization code to the third-party cloud via the callback URL.

Process diagram

OAuth 2.0 Authorization Code GrantUserThird Party App/BrowserThird Party CloudTuya CloudUser grantspermission to thethird party cloud.1. User logs in or scans a QRcode for login authorization.1.1 User logs in.1.2 User logs in successfully.1.3 Ask the user to confirmauthorization.1.4 User confirms authorization.1.5 User confirms authorization.1.6 Generate OAuth 2.0authorization code andredirect to the callback URL.UserThird Party App/BrowserThird Party CloudTuya CloudOAuth 2.0 Authorization Code Grant

Get an access token

Exchange OAuth 2.0 authorization code for access tokenThird Party CloudTuya CloudExchange OAuth 2.0authorization codefor an access token.1. Get access_token with theclient_id and client_secret code.1.1 Return access_token.Service call.2. Make a service call.2.1 Return the operation result.Third Party CloudTuya CloudExchange OAuth 2.0 authorization code for access token

Manage authorization

After user authorization is obtained, it is also necessary to obtain authorization from the app owner. Only after this authorization can third-party enterprises access the data.

The app owner goes to the Tuya Developer Platform > App User Management page. Select the Central Europe Data Center in the top right corner of the page, click EU Data Sharing Authorization, and then enable the Authorization Status in the dialog that appears.

The app owner can also disable authorization. Once disabled, authorization for all apps under the owner will be terminated, and users will no longer be able to authorize devices under these apps to third-party enterprises.

Device Data Sharing

Subscribe to cloud services

Tuya offers a packaged message subscription cloud service for device data sharing in the EU region. Third-party enterprises can subscribe to the cloud service to obtain real-time messages reported by authorized devices.

Subscribe to the cloud service

  1. Go to the Tuya Developer Platform > Cloud Services page.
  2. In the section of My Service, search for Device Data Sharing and click Subscribe to Resource Pack in the Operation column to subscribe to the service.

Configure the message service

  1. Go to the Tuya Developer Platform > Project Management page, locate the desired project, and then click Open Project in the Operation column to go to the project details page.
  2. In the tab of the Message Service, enable the Message Service. For more information, see Manage Message Service.
  3. After the settings are completed, the user will start receiving messages reported by authorized devices. For more information, see Standard Instruction Set.

Manage authorization

Users can manage their authorizations in the following steps:

  1. On the app, go to the Me tab, tap the Settings icon in the top right corner, and then find Account and Security.

  2. In the section of Authorization Management, tap Cloud Development Project, select the authorized project, and then tap Linked to revoke the authorization.

    Device Data Sharing
Prev DocOAuth 2.0 Authorization Flow
Next DocCloud Services
Language
English
English
简体中文
844-672-5646
7×24 Service Hotline
Marketing Cooperation
marketing@tuya.com
Business Cooperation
vip@tuya.com
Customer Service
service@tuya.com
Media Inquiry
pr@tuya.com
Contact UsTuyaExpoApp MallTuyaGo
Privacy PolicyTerms of UseCalifornia Privacy NoticeBug BountyDo Not Sell or Share My Information
© 2025 Tuya Inc.
English
English
简体中文