<div class="section" id="sec-2-article">
<div class="container">
<div class="cols">
<div class="col-8 margin-auto">
<div class="content-block">
<p>The European Digital Identity Framework <a
href="https://www.europarl.europa.eu/news/en/press-room/20240223IPR18095/meps-back-plans-for-an-eu-wide-digital-wallet"
target="_blank">(Regulation (EU) 910/2014 following amending Regulation (EU) 2024/1183)</a>
entered into force on 20 May 2024.</p>
<p>The adoption of the Regulation entails that EU Digital Identity Wallets, transforming how
citizens verify their identity and securely and privately exchange
information, will soon become a reality across the EU.</p>
<p>Here is a broad overview of the journey to adoption:</p>
<div class="red-wrapper">
<p class="year"><strong>2014</strong></p>
<div class="red-box-wrapper">
<p class="box-title">Adoption</p>
<div class="red-box">
<p>eIDAS Regulation (Regulation (EU) 310/2014) adopted.</p>
</div>
</div>
<p class="year"><strong>2020</strong></p>
<div class="red-box-wrapper">
<p class="box-title">evaluation </p>
<div class="red-box">
<p>The European Commission evaluates the eIDAS regulation and carries out public
consultations on the review of the eIDAS Regulation.</p>
</div>
</div>
<p class="year"><strong>2021</strong></p>
<div class="red-box-wrapper">
<p class="box-title">Revision</p>
<div class="red-box">
<p>The Commission proposes a revision of eIDAS regulation.</p>
</div>
</div>
<p class="year"><strong>2024</strong></p>
<div class="red-box-wrapper">
<p class="box-title">Final vote and adoption</p>
<div class="red-box">
<p>Trilogue negotiations between the European Parliament, the Council, and the
Commission occurred, refining the proposed legislation, ending in a final vote and
adoption on 30 April 2024.</p>
</div>
</div>
</div>
<p>Read on to learn more about the details of this legislative and technical journey that will
culminate with widely adopted and technically developed EU Digital Identity Wallets.</p>
</div>
<div class="content-block">
<h3 class="h2">In the beginning there was eIDAS</h3>
<img src="/digital-building-blocks/sites/download/attachments/915931903/illu-2.png" alt=""
aria-hidden="true" />
<p>The adoption of the <a href="https://eur-lex.europa.eu/eli/reg/2014/910/oj/eng"
target="_blank">eIDAS regulation in 2014 (Regulation (EU) No 910/2014)</a> sought to create
a digital single market via electronic identification and trust services.</p>
<p>The eIDAS Regulation's goal was to create a common foundation for secure and seamless electronic
interaction among citizens and public authorities.</p>
<p>eIDAS stands for "<strong>e</strong>lectronic <strong>I</strong>Dentification,
<strong>A</strong>uthentication and trust <strong>S</strong>ervices". Each element of the name
is represented in the three pillars that form the core of the Regulation:
</p>
<ul>
<li><strong>eID:</strong> establishing a framework for mutual recognition of eID means across
the EU;</li>
<li><strong>Trust services:</strong> defining and regulating trust services such as electronic
signatures, electronic seal and electronic time stamping;</li>
<li><strong>Interoperability:</strong> creating rules to ensure that eIDs and trust services can
be used cross-border.</li>
</ul>
</div>
<div class="content-block">
<h3 class="h2">Assessing eIDAS</h3>
<p>Article 49 of the eIDAS Regulation mandated a review of the Regulation by 1 July 2020, and an
assessment as to whether updates to the Regulation would be necessary, taking into account
technological advancements made in the years following the entry into force, among other
factors.</p>
<p>The European Commission launched an impact assessment of eIDAS Regulation in 2020, with a public
consultation, targeted surveys, and in-depth interviews carried out with a broad range of public
and private stakeholders.</p>
<p>It was found that an update was needed as implementation was uneven, with only 14 Member States
notifying at least one eID scheme. While it created a strong foundation, it failed to achieve
its overarching goal of promoting cross-border identification and authentication to public
services.</p>
</div>
<div class="content-block">
<h3 class="h2">The road to a new proposal to amend eIDAS</h3>
<p>
Following the impact assessment, the Commission drafted a proposal for amending the eIDAS
Regulation, addressing the identified failings and gaps of the original Regulation that led to
the limited uptake; including, among other issues, no obligation for Member States to notify an
eID scheme, and a lack of private sector focus, thus not
creating any incentives for private sector eID usage.
</p>
<p>
The amending Regulation proposed many changes to address the dynamically changing technical and
legal landscape. These include the increasing digitalisation of society with a corresponding
desire for seamless digital experiences, andemergence of privacy issues. Numerous actors,
including social media companies, have become de facto
digital identity keepers, free to profit from citizens' personal data.
</p>
<p>The amending Regulation addresses these failings, most notably by the new requirement for Member
States to offer European Digital Identity Wallets that are privacy enhancing, giving citizens
back control over their data when identifying themselves online and offline.</p>
<p>It would also help to achieve the Digital Decade target of 100% of EU citizens being able to use
digital identity to access public services by 2030.</p>
</div>
<div class="content-block">
<h3 class="h2">The legislation advances</h3>
<p>The ordinary legislative procedure for EU legislation is both complex and lengthy, with the three
main European institutions playing clearly defined roles:</p>
<img src="/digital-building-blocks/sites/download/attachments/915931903/illu-3.png" alt=""
aria-hidden="true" />
<p><strong>The European Commission:</strong> It continues to participate throughout the process by
providing opinions on amendments, facilitating negotiations between the Parliament and Council,
and potentially withdrawing or modifying its proposal if necessary.</p>
<p><strong>The European Parliament:</strong> Represents EU citizens and enters into negotiations
with the European Council.</p>
<p><strong>The European Council:</strong> Represents individual Member States and enters into
negotiations with the European Parliament.</p>
<p>After the Commission launches a legislative proposal, the European Parliament and European
Council must approve the Commission's proposal, with each institution able to amend, accept, or
reject it through up to three readings until they reach agreement; otherwise the proposal fails.
</p>
</div>
<div class="content-block">
<h3 class="h2">Trilogue negotiations and the final vote</h3>
<p>The three institutions meet once their negotiating positions are finalised in informal
<strong>Trilogue</strong> meetings with the aim of reaching a political agreement and drafting a
legislative text that can be adopted.
</p>
<p>Once the legislative text is finalised it is submitted for a final vote in the Parliament and
Council. The Parliament adopted the EU Digital Identity Regulation on 29 February2024 and the
Council on 26 March 2024. It was published on 30 April 2024 in the Official Journal of the
European Union and entered into force on 20 May 2024.</p>
</div>
<div class="content-block">
<h3 class="h2">Implementing Acts to come</h3>
<p>When uniform implementation of an EU Regulation across every Member State is required,
implementing acts are adopted, detailing the technical or legal requirements for implementation.
You can find a full overview of every implementing act, including its current status and
timeline as well as links to each act, on our EU Digital Identity Regulation page.</p>
<p><a href="/digital-building-blocks/sites/display/EUDIGITALIDENTITYWALLET/EU+Digital+Identity+Wallet+milestone+reached+as+Commission+adopts+implementing+regulations"
class="btn outline primary"><span> Explore the implementing acts</span><span
class="ico-cta-forward"></span></a></p>
<p>Implementing acts are adopted through a process called Comitology. We'll explain how this works
in more detail in our next article.</p>
</div>
<div class="content-block">
<h3 class="h2">What does the adoption of the legislation mean?</h3>
<img src="/digital-building-blocks/sites/download/attachments/915931903/illu-4.png" alt=""
aria-hidden="true" />
<p>The European Digital Identity Regulation amends the original eIDAS Regulation: it updates
Articles of the latter or introduces new ones. Concretely, this means that both texts form the
legal basis - to get the whole picture, you need to read them side-by-side. To facilitate this,
a <a href="https://eur-lex.europa.eu/eli/reg/2014/910/2024-10-18/eng"
target="_blank">consolidated version is available.</a>
</p>
<p>
The 2024 text is referred to colloquially as the "European Digital Identity Regulation" because
it introduces some important changes as to the management of digital identities, namely using
wallets, stating that everyone in the EU has the
<a href="https://eur-lex.europa.eu/legal-content/EN/TXT/?uri=CELEX%3A32024R1183&qid=1716986198888#:~:text=Union%20citizens%20and%20residents%20in,offline%20services%20throughout%20the%20Union."
target="_blank">"right to a digital identity that is under their sole control and that
enables them to exercise their rights in the digital environment and to participate in the
digital economy."</a>
</p>
<p>
The European Digital Identity Framework is the tool to create a digital identity that is under
citizen control. It seeks to create a harmonised means of safe, privacy-enhancing digital
identification that is available to every citizen, resident, and business to access online
public and private services across Europe and to enhance the right of citizens to participate in
the digital society safely. It does so via three main pillars:
</p>
<p><strong>European Digital Identity Wallets:</strong> Each Member State will have to provide at
least one European Digital Identity Wallet to its citizens. They will be able to use the wallet
to authenticate to digital services on top of safely storing, sharing,
and signing digital documents.</p>
<p>
<strong>Trust services:</strong> Trust services are regulated digital services designed to
ensure the security, authenticity, and integrity of electronic transactions. The new European
Digital Identity Framework introduces, amongst others, the ability of citizens to sign by
means of qualified electronic signatures (QES) through
the Wallet, free of charge for personal use.
</p>
<p><strong>eID Schemes:</strong> They form the foundation for secure and trustworthy digital
identities across the Union. The Regulation aims to enhance the way individuals and businesses
access online services while promoting interoperability and ensuring security.</p>
</div>
<div class="content-block">
<h3 class="h2">New legal obligations</h3>
<ul>
<li>
Member States must offer at least one European Digital Identity Wallet to every citizen
within 24 months as of the adoption of implementing acts setting out the core
functionalities and certification of the wallets. This means wallets will become available
by the end of 2026. Member States can offer a wallet directly themselves, mandate an
external party to create a wallet, or recognise a wallet created by the private sector.
</li>
<li>Various actors in the EU Digital Identity Wallet ecosystem, including wallet providers and
trust service providers will each have to follow specific rules.</li>
<li>It will be mandatory for public authorities to accept EU Digital Identity Wallets when they
are issued by Member States at the end of 2026.</li>
</ul>
<p>Stay tuned for a deep dive into the technical work behind EU Digital Identity Wallets, and how it
pioneered a more agile way to create EU legislation.</p>
</div>
</div>
</div>
</div>
</div> |