New Zealand has launched a trust framework for digital identity, a crucial step towards the country's digital transformation.
eIDAS2 and European identity wallets take center stage in a new digital era
On 29 February, the European Parliament presented the framework text known as eIDAS2, which amends and improves the previous eIDAS regulation, in force since 2014.
T
he eIDAS (electronic IDentification, Authentication and Trust Services) Regulation, which came into effect in 2014, has been instrumental in creating a single European digital market. It established a legal framework for electronic identification (eID) and trust services, such as electronic signatures and seals, enabling citizens and businesses to conduct secure and seamless electronic transactions across the European Union.
However, despite its importance, only 14 Member States have introduced an electronic identity system and less than 60% of Europeans have access to secure cross-border solutions. eIDAS2 paves the way for this figure to rise to 80% by 2030, and for all citizens in the Member States to have a European Digital Identity.
However, the digital landscape has evolved considerably since the implementation of the first eIDAS. The emergence of new technologies, such as artificial intelligence, blockchain, and cloud services, has opened up new opportunities for innovation in the field of digital identity. At the same time, new challenges have arisen, such as cybercrime and identity theft, which are becoming increasingly sophisticated and difficult to detect.
In this context, the European Parliament has finally approved the text for a new eIDAS regulation, known as eIDAS2, only pending the final filtering by the EU Council and publication in the OJEU. This new framework aims to update and strengthen the current regulation for European digital identity, in order to harness new technologies and respond to emerging challenges.
Through this regulation, Europe seeks to address the fragmentation between Member States and empower its citizens to “exercise their rights in the digital environment and actively participate in the digital economy.” To this end, it requires each State to provide citizens with accessible, easy-to-use, secure, and reliable digital identities that also protect them from vulnerabilities, as mentioned earlier.
Ambitious goals for improving digital identity management
The eIDAS2 project was created to address a series of needs and consolidate them for the future. The framework aims to ensure that individuals and legal entities have access to digital identity solutions, linking a series of attributes to these solutions. These attributes, of which a basic list is defined, would include name, address, date of birth, official identification number, etc. With this data stored securely, users will be able to verify their identity to activate services in various contexts.
Information will always be shared within strict limits, designed to protect personal information. Users will always have the power to choose which data they share, under the principle of “once only.” In other words, they will not have to share all their personal information with each service they wish to use, if it is already held by another organisation.
At the core of the eIDAS2 objectives are:
- Creation of European digital identity wallets: eIDAS2 introduces the concept of European digital identity wallets (EUids). These wallets, as we will discuss further below, will allow citizens and businesses to store and manage their digital credentials securely and efficiently. EUids can be used to access a wide range of online services, both public and private.
- Enhanced security and flexibility: This revision of eIDAS introduces new security requirements for electronic identification (eID) and trust services. These requirements are designed to protect citizens and businesses from cybercrime and identity theft. Additionally, eIDAS2 offers greater flexibility to Member States in implementing the framework.
- Interoperability: eIDAS2 places greater emphasis on interoperability between eID systems and trust services of different Member States, in order to facilitate the use of digital credentials by citizens and businesses across the European Union.
- New trust services: eIDAS2 introduces new trust services, such as electronic sealing and electronic notification services. These new services can be used for a wide range of applications, such as contracting and the presentation of electronic documents.
Request a free demo of our digital identity solutions, which are compliant with eIDAS2.
European digital identity wallets: the cornerstone of eIDAS2
European digital identity wallets (EUids) are undoubtedly the central element of eIDAS2. These wallets are the tool through which citizens of the Union can access and control their identity attributes and credentials in a secure and efficient manner.
This system, issued by each Member State following common guidelines, will offer a comprehensive solution for digital identity management. The European digital wallet allows users to store identification data, credentials, and other relevant attributes, enabling online and offline identification throughout the European Union. Its use will be free of charge for individuals, guaranteeing transparency and user control over their data. Additionally, the European digital wallet will be accessible to people with disabilities and will be available in all Member States to access public services that require electronic identification.
European wallets should serve as a means for users to control the selective disclosure of their data at all times, as well as the deletion of such data in any circumstance, including loss or theft, in the simplest possible way. Both the right to use the wallets and the right to discontinue their use are protected; these rights will always remain in the hands of the user.
The initiative is expected to be adopted by private service providers in sectors such as transport, energy, banking, healthcare, education, and telecommunications, among others. The proposal guarantees the cross-border use of digital wallets to access online public services in any EU country, promoting interoperability and digital integration within the European area.
EUids can contain a wide range of digital credentials: identity documents, such as passports or ID cards, driving licences, academic qualifications, professional certificates, loyalty cards, or access codes for online services. They can be used to access a wide range of online services, both public and private. For example:
- Logging in to websites and applications.
- Carrying out administrative procedures online.
- Signing electronic documents.
- Making online payments.
- Opening a bank account in any EU Member State with the wallet issued in the user’s country of origin.
- Accessing updated health records, including when seeking assistance in another European country.
- Renting a vehicle.
- Sharing financial data between banks in different Member States.
EUids will be subject to strict security requirements to protect users’ digital credentials. Member States will be responsible for ensuring the security of EUids and the infrastructure that supports them.
eIDAS2 as a development opportunity for businesses and technology providers
eIDAS2 has the potential to transform the way citizens and businesses interact with the digital world, defining their rights and obligations, as well as those of Trust Service Providers.
For businesses, keeping up with these changes and adapting their processes to the new regulations is essential to ensure their success in today’s digital market. Staying informed, collaborating with experts, and carrying out strategic planning are essential steps for adapting to eIDAS2. By doing so, businesses can take advantage of the benefits offered by the new regulation, such as increased security, efficiency, and access to new markets.
In short, adapting to eIDAS2 is not only a legal obligation, but also an opportunity for businesses to thrive in the digital ecosystem.
Contact our digital identity experts now