May 12, 2022
eIDAS: The Digital Identification Regulation for Europe
The eIDAS regulation introduces a paradigm shift in digital identification and electronic signature in Europe.
This new community regulation has forever changed the way of doing business and how companies and users in Europe interact with each other.
WHAT IS eIDAS REGULATION (EUR-LEX DEFINITION)
The eIDAS acronym is for electronic IDentification, Authentication and trust Services. It corresponds to Regulation (EU) No. 910/2014 of the European Parliament and Council of July 23, 2014.
This new eIDAS EU regulation for identification and digital signature is opposed to electronic administration projects based on Law 11/2007 of citizen electronic access to public services.
If you want to get detailed information about AML5 / eIDAS directive, download this guide. Take advantage of it and boost your sales.
eIDAS IMPLEMENTATION STANDARDS
The eIDAS certification sets the standards and criteria for simple electronic signature, advanced electronic signature, qualified electronic signature, qualified certificates and online trust services. Furthermore, it rules electronic transactions and their management.
Previously, the need for physical attendance in a Registration Entity was a compulsory condition to verify a user’s identity and begin a relationship with security.Nowadays, and thanks to eIDAS and any Certification Authority, this can be done digitally, and a reliable environment is created online with maximum guarantees,leading to new digital identification mechanisms. In this way, eIDAS becomes key for open banking.
Thanks to eIDAS Regulation, the face-to-face presence act prior to obtaining a certificate in a Registration Entity is avoided and its accomplishment is allowed from a remote digital channel, as it is specified in Article 24. Means of verification such as video identification act as a key solution within this framework.
The eIDAS framework manages the certificate issuance of a qualified electronic signature, being possible to keep confidence in the identity of a person from another recognized certificate. In this way, a new ecosystem of electronic administration is created and needs just one click to integrate new users.
Thus, eIDAS regulation introduces other recognized identification methods that provide security that is equivalent to physical presence. This security level and legality are confirmed by a Conformity Assessment Body.
You can learn detailed technical and legal information about eIDAS by reading this article.
eIDAS COUNTRIES OF APPLICATION: CREATING A SINGLE MARKET IN EUROPE WITH AML
AML5 Directive, together with eIDAS regulation, involves the creation of a Digital Single Market that allows homogenizing electronic identification in Europe and acquiring customers immediately and remotely.
5AMLD, or AML5, allows financial companies to work in a single market of 508 million consumers by removing barriers between the user and the company in the customer acquisition process.
The European regulation of trust services 920/2014 (eIDAS) delegates to the AML5 Directive the ability to identify new customers in a simple, safe, and remote way in any country of the European Union.
In addition, eIDAS regulation also defines the requirements for certificate PSD2 compliance with digital certificates. This includes standards designed to verify their holders’ identity, as well as the operation of the Qualified Trust Service Providers (TSPs) that issue them. eIDAS Certificates which are issued in accordance with eIDAS standards by Qualified TSPs are also known as “Qualified Certificates” and provide special status in certain legal and regulatory contexts across the EU.
In terms of the eIDAS level of assurance, eIDAS encompasses the following.
eIDAS countries vs eIDAS level of assurance:
- High, substantial, and low: Czech Republic, and Italy.
- High: Estonia, Spain, Malta, Germany, Austria, Slovakia, Croatia, Belgium, Luxembourg, Norway, Lithuania, and Portugal.
- High and substantial: Sweden, The Netherlands, and Latvia.
- Substantial: France, Denmark.
eIDAS QUALIFIED CERTIFICATE FOR DIGITAL IDENTIFICATION
The new eIDAS regulation establishes a level of assurance with basic and reasonable standards for digital identification: It is needed to create a reliable environment and it must be done with the maximum technical guarantees for the users’ and companies’ safety.
Lessons learned in the last decade have allowed companies and regulators to become aware of the needs and, consequently, allow new licenses in eIDAS regulation that led to new digital identification mechanisms without lowering security at processes.
Article 24 avoids the act of personalization prior to obtaining a certificate in a Registration Entity and allows to do everything from a digital and remote channel. Identification methods such as synchronous and asynchronous remote video identification come into play to achieve eIDAS compliance.
Through an eIDAS electronic signature legally binding by its qualified certificate, it is possible to inherit the confidence and guarantee in the identity from another recognized certificate. Equivalent safety is confirmed by a conformity assessment body.
eIDAS COMPLIANCE: WHY IS IT SO IMPORTANT?
eIDAS certification introduces,for the first time in history, electronic identification methods for companies to not require the physical presence of their customers in a commercial office or branch to operate or, for example, open a bank account.
Regulated sectors such as financial or telecommunications can now acquire customers online anytime and anywhere. eIDAS regulation establishes a completely new framework for action and a common economic language for operations between companies and users.
But eIDAS compliance is not just a regulatory peak for the private sector in terms of digitalisation. Thanks to the AML5 and eIDAS implementation, the digitalisation of certain bureaucratic and sales processes become a reality, decreasing costs and times while offering users a comfortable experience to become customers of a company, managing their products and services, or interacting with the public administration.
This way, eIDAS regulation EUR LEX eliminates the sidesteps situations in which users give up due to a complex process and the need to personify themselves in a commercial office, store or branch of the company they want to become clients, and, on the other hand, give the government the necessary tools to improve their digital processes in favour of the citizen, creating better and much more seamless relationships, reducing waiting, workload, and, overall, frustration.
eID, LEADING PARTNER FOR OPTIMAL eIDAS COMPLIANCE
Our video identification, authentication and electronic signature (SignatureID) solutions, pioneering and unique in the market, offer a wide range of trust services for KYC processes (Know Your Customer), digital onboarding and online acquisition of customers, as well as for contractual customer relationship management.
We created VideoID, the first and only technology that combines video-streaming with advanced artificial intelligence and machine learning techniques to identify people quicker than ever from any device and through any channel. It has become completely legally binding and provides the same technical security as face-to-face identification.
Request a demonstration and detailed information about our eIDAS products by clicking here.