The key requirements of eIDAS regulation
Electronic Identification (eID):
- Reliability: eID schemes must have a high level of assurance and reliability in verifying the identity of individuals
- Privacy: eID systems should respect the privacy of individuals and comply with data protection laws
- Interoperability: eID schemes should be interoperable; allowing for cross-border recognition and acceptance within the EU
- Non-discrimination: eID systems should not discriminate against individuals based on their nationality or place of residence
Electronic signatures
- Validity and legal effect: Electronic signatures that comply with the eIDAS Regulations are legally equivalent to handwritten signatures
- Levels of assurance: The regulation defines different levels of assurance for electronic signatures, ranging from simple to qualified electronic signatures
- Integrity and authenticity: Electronic signatures must ensure the integrity and authenticity of the signed data
- Signature Creation Devices: The regulation outlines requirements for secure signature creation devices to generate electronic signatures
Trust services
- Qualified Trust Services: The eIDAS Regulation defines criteria for qualified trust services, including qualified electronic signatures, electronic seals, electronic time stamps, and electronic registered delivery services
- Certification of Trust Service Providers (TSPs): TSPs can undergo certification to demonstrate compliance with the regulation's requirements
- Security and integrity: Trust service providers must implement appropriate security measures to protect the services they offer
- Transparency: TSPs should provide clear and transparent information about their services, terms, and conditions
Cross-Border Regulaltion
- Mutual recognition: Member states of the EU are required to recognize and accept eID and trust services from other member states
- Notification: Member states should notify the European Commission of their eID schemes and trusted list of qualified trust service providers