How the REPAIR Act and State Laws Impact Automotive OEMs

The Right to Repair movement is putting increasing pressure on automotive manufacturers. The REPAIR Act (H.R. 906), a proposed federal law, aimed to require OEMs to grant vehicle owners and independent repair shops access to essential vehicle data and repair tools.

Although the bill didn’t pass before the 118th Congress ended, the push for repair rights and data access isn’t fading. State-level regulations continue to develop, and consumer advocacy groups are demanding more transparency.

OEMs need to prepare for these changes now - before legal requirements force them into costly last-minute adjustments.

REPAIR Act ?- what are the requirements for OEMs

If passed, the REPAIR Act would have required vehicle manufacturers to:

• Provide access to vehicle data → OEMs would need to give vehicle owners and their chosen repair providers direct, wireless access to vehicle-generated data through a standardized platform.
• Make repair tools & information available → Manuals, tools, and software would have to be accessible to independent repairers and aftermarket parts manufacturers at fair and non-discriminatory prices.
• Remove restrictions on aftermarket parts → Manufacturers couldn’t require or imply that only OEM-branded parts, tools, or equipment must be used for repairs (except for recalls and warranties).
• Maintain cybersecurity without blocking repairs → While protecting data and vehicle security, OEMs wouldn’t be allowed to use cybersecurity concerns as an excuse to limit legitimate repair access.

State laws are already in effect

Even without federal legislation, state-level Right to Repair laws are impacting OEMs. Massachusetts and Maine have passed laws requiring manufacturers to provide access to repair data and telematics platforms, though legal disputes have delayed enforcement. Meanwhile, 20 other states are actively considering similar laws.

For OEMs, this means handling a patchwork of regulations - each with different requirements and timelines. If a future federal law is passed:

• It could override conflicting state laws, creating a unified national standard.
• Without federal preemption, manufacturers would need to comply with both state and federal regulations, adding complexity.

What OEMs should do now to prepare

Waiting for a final ruling is risky. Companies that prepare now will be in a stronger position when new laws take effect. Steps to take now:

• Develop a system for vehicle data access that allows owners and independent repairers to retrieve diagnostics and repair data directly.
• Make repair manuals, diagnostic tools, and software available at fair, reasonable, and non-discriminatory costs.
• Implement cybersecurity protections without using them to limit legitimate repair access.
• Improve over-the-air (OTA) update capabilities so software updates and diagnostics can be done remotely without requiring a dealership visit.
• Design vehicles with standardized, replaceable components to support repairs and ensure long-term parts availability.
• Revise warranty and supply chain policies to prevent unnecessary restrictions on independent repairs and the use of non-OEM parts.

Right to Repair is just one piece of the regulatory landscape

The REPAIR Act and state-level Right to Repair laws are not the only regulations affecting automotive OEMs. Globally, manufacturers must adapt to an increasingly complex legal landscape, including:

• The EU Data Act – regulating access to and sharing of vehicle-generated data, impacting how OEMs handle telematics, third-party services, and customer data rights.
• The EU Battery Passport – requiring transparency on battery components, lifecycle, and recycling, pushing OEMs to adopt sustainable battery management solutions.
• The Consumer Privacy Protection Act (CPPA) in Canada – introducing stricter data privacy and security requirements, affecting how OEMs collect, store, and process consumer data.

These regulations go beyond repair rights, covering data access, sustainability, and consumer protection. For manufacturers, this means planning ahead and implementing systems that ensure compliance across multiple regions.

Using IT solutions to manage compliance

Keeping up with changing regulations requires strong IT infrastructure to support repair data access while maintaining security. This includes:

• Developing secure platforms where repair shops can access diagnostic data without exposing critical vehicle functions.
• Automating compliance processes to reduce administrative overhead.
• Building flexible solutions that can be updated as laws evolve.

An IT enabler helps manufacturers put these ideas into practice, securing compliance without unnecessary complexity. This means designing systems that meet legal requirements, support secure data access, and simplify operations.?

What’s next?

Right to Repair laws are gaining traction across the U.S., but they’re just one part of a broader set of regulatory requirements. From data privacy and cybersecurity to sustainability and supply chain transparency, automotive manufacturers need to stay ahead of new compliance challenges.

At Grape Up , we help OEMs address these challenges by designing solutions that align with global regulations. We’ll continue covering key developments in this space - stay tuned for more insights.