The eIDAS Regulation (EU No.910/2014), enforced across the EU on 1st July, learns from the lessons of the past and promises to ease the cross-border use of electronic identification systems across the EU. As businesses get their heads around this, it is important to understand what is changing and the reasons why.

So why the change?

On 1st July 2016, eIDAS repealed and replaced the 17 year-old Electronic Signatures Directive (1999/93/EC). The Directive originally intended to provide a legal framework to encourage and facilitate the use of electronic signatures across the European Community. But it fell short of its ambition and the adoption of electronic signatures has been sluggish.

The European Commission observed that the Directive was implemented haphazardly by Member States and this has made it, in the words of the Commission, “de facto impossible to conduct cross-border electronic transactions.” As a Directive, it gave EU Member States discretion over implementation into local law, and this led to the promotion of local eSignature standards which were not recognised by other Member States. Ultimately, the European Commission realised that the Directive was hampering its flagship Digital Single Market strategy – which is all about driving cross-border e-commerce – and this would require legal reform.

Additionally, the Directive was increasingly unfit for the digital age. It was drafted with hardware-based smartcard and handheld USB token technologies in mind and failed to account for new technologies that have emerged since 1999, including mobile technologies and the Cloud.

How does eIDAS alter things?

eIDAS had mandatory, direct effect and applied uniformly across all 28 Member States. It borrows several innovations from the original Directive and takes them one step further to align with Digital Single Market strategy. One of these borrowed innovations is the creation of specific electronic signature types which are recognised across the EU, including:

  • Advanced Electronic Signature: One type of electronic signature with more stringent requirements for verifying the signer’s identity and binding it to the document.
  • Qualified Electronic Signature: Another type of electronic signature that meets all the requirements of an Advanced Electronic Signature, but must be backed by a certificate from an organisation certified as a “Qualified Trust Service Provider”, and produced using a “Qualified Signature Creation Device”.

Webinar: Drive Global Business with eSignatures

Watch the webinar, “Be Boundless: Drive Global Business with eSignatures” to understand how you can best capitalise on this new opportunity and what the new regulation means for your business, whether in the UK, or the EU. Or continue on to our next blog post where we discuss how eIDAS has built on the foundation established by the Directive to advance the Digital Single Market strategy.

The eIDAS Regulation’s intent is to enable convenient and secure electronic transactions across EU borders for citizens, businesses, and public sector institutions.

By Richard Oliphant, EMEA General Counsel, DocuSign