Security and privacy The EU Digital Identity Wallet will protect your privacy and ensure you get to decide how your data is used. It will
ensure that everyone in the EU can safely and securely access private (or public) digital services, while protecting
users and service providers against identity theft. All the digital documents stored in your wallet (like your digital ID, mobile driving licence or train ticket) will
remain private, as will the transactions in which you use these documents. Not even the issuers of your documents
will be informed when the documents are shared. Your wallet will have multiple privacy-preserving features, designed with data minimisation
principles (meaning you only share what is essential) built into it. The EU Digital Identity Wallet will limit tracking and profiling, through its data minimisation design,
and the legal rules set by the Digital Identity Regulation. A built-in dashboard will give you a complete overview of all your data and transactions.
From it, you can send a request to relying parties to delete your data. Your data will be locally stored in your wallet, following the
highest cybersecurity standards, ensuring its security. The EU Digital Identity Wallet will be well monitored, ensuring that each wallet meets the
obligations set out by EU and Member State laws. Wallets will be compliant with the General Data
Protection Regulation and Cybersecurity certified. Open-source code and rigorous testing will ensure safety and total transparency in how
your wallet will work, with security statistics made publicly available. Wallets can be
suspended in case a serious security risk is identified. Data minimisation is at the heart of the EU Digital Identity Wallet. It means that any digital
service should collect only the absolute minimum of data required to provide the service.
The wallet will have built in features designed to enhance its data minimisation capabilities;
these are the selective disclosure of attributes, and zero-knowledge proofs. Zero-knowledge proofs: This feature will allow you to verify an attribute is true without
disclosing any further details. You could for example confirm that your bank account holds
above a certain amount, without revealing the exact figure. This ensures an extremely high level
of privacy. Privacy The selective disclosure of attributes will allow you to only share the specific
information requested by a service provider, without revealing extra information. For example, with the selective disclosure of attributes you could choose to share your date of birth,
but without revealing any other identifying details that could be used for profiling. The result is increased privacy while still having access to a wide range of digital services. The depiction above is for illustrative purposes only and is not representative of what the EUDI-Wallets made available by Member States will look like. Digital document issuers will be legally forbidden to combine your personal data with third-party data,
while the data minimisation features, like the selective disclosure of attributes,
of the wallet will further ensure your privacy. This all combines to make the tracking
and profiling of your online activity extremely difficult. The processing of the data you do share will be strictly regulated, to ensure a
maximum of privacy and security for all users. Additional measures will be introduced
by Member States to protect your data and privacy when using your wallet across borders. Unobservability means that your actions stay entirely private and invisible online.
This is opposed to anonymity, where you are not personally identifiable, but your
actions are visible. The EU Digital Wallet will ensure unobservability online by
prohibiting the collection of data on how you use your wallet, Digital ID, and any
electronic documents. Nor can any of your data be combined, ensuring that how you
use your wallet — and the data you share — stays private and wholly yours. Keeping track of what data about yourself you do choose to share ensures your security and privacy stays protected.
You will always know exactly who has accessed your data. The EU Digital Identity Wallet's built in privacy dashboard
will ensure you'll always have a clear view of who you've shared your data with. Privacy dashboard Every EU Digital Identity Wallet will have a built-in dashboard offering an overview of who you've shared data with,
and exactly what data was shared. This dashboard will include: Every service provider you've shared data with will be listed. You will be able to request that the service provider you've interacted
with delete your data, directly through the dashboard. Worried that someone you shared personal information with has
misused your data? You can report your concerns directly in the dashboard. You have the right to download your data from the wallet. The depiction above is for illustrative purposes only and is not representative of what the EUDI-Wallets made available by Member States will look like. A broad range of technical and legal measures ensure that your data stays safe and private. Advanced cryptographic methods are used to encrypt your data. Safety measures prevent cryptographic secrets from being exported outside
of your EU Digital Identity Wallet. All exchanges of data follow cybersecurity
requirements and protocols that ensure security and privacy. Your EU Digital Identity Wallet will be compliant with strict privacy and security standards. very EU Digital Identity Wallet will be fully GDPR compliant.
Service providers will also be obligated to follow all the provisions of GDPR. Each EU Digital Identity Wallet will be certified to ensure it meets
the security standards set in the Digital Identity Regulation. Member States will be required to certify every wallet they (or a software provider) make available. Credential / Digital Document providers (issuers of Qualified Electronic Attestations of Attributes)
will be audited every two years to ensure that the necessary
security measures are taken to address all risks. Every Service Provider that relies on information in the wallet (a.k.a. Relying Parties)
must register their activities and declare how they will use EU Digital Identity Wallet data.
They should also carry out data protection impact assessments. Your online security is our priority. Here are some of the ways we will ensure your data stays secure and private. EU Digital Identity Wallet can be suspended if security issues are found with it. Member States will work together with SMEs, researchers, and other key stakeholders to test
and improve how the EU Digital Identity Wallet Works, while always ensuring wallets
meet the obligations set out in EU and Member State law. Statistics on all security and data breaches will be made publicly available. Every EU Digital Identity Wallet available to citizens will use open-source code
which guarantees its transparency. How wallets work and how data is used will be publicly available information. Safe and easy digital identification for everyone in Europe.The security and privacy features of the EU Digital Identity Wallet
Your data Your control
Your data Your control
Only share what is needed
No tracking and profiling
Keep track of the data you share
We make sure your data is safe
Compliance with privacy and security standards
Your security and privacy is our priority
Only share what is needed
Selective disclosure
No tracking and profiling
No tracking and profiling
Processing of your data
Unobservability
Keep track of the data you share
Know where your data has been with the privacy dashboard
A log with your transaction history
Data deletion request
Reporting
Your data is yours
We make sure your data is safe
Your data is encrypted
Multi-factor authentication
Compliance with privacy and security standards
General Data Protection Regulation (GDPR)
Digital Identity Regulation
Member State certifications and auditing
Your security and privacy are our priority
Your security and privacy are our priority
Wallet suspension
Safe test environments
Public security statistics
Open-Source code
What is the EU Digital Identity Wallet?
Overview
Content Tools