OverviewEU

EU eIDAS What It Covers

A practical map of trust services, identification, wallets, and who must do what.

Use this page to identify your role, then jump to the subpages to build audit-ready implementations.

Back to main artifactReview sources
Author
Sorena AI
Published
Feb 21, 2026
Updated
Feb 21, 2026
Sections
5

Structured answer sets in this page tree.

Primary sources
3

Cited legal and guidance references.

Publication metadata
Sorena AI
Published Feb 21, 2026
Updated Feb 21, 2026
Overview

eIDAS (Regulation (EU) No 910/2014) establishes the EU framework for electronic identification and trust services for electronic transactions. The amended regulation, as updated by Regulation (EU) 2024/1183 and its 9 April 2025 corrigendum, now covers a wider trust-service perimeter that includes electronic archiving, electronic attestations of attributes, electronic ledgers, and management of remote electronic signature and seal creation devices. The fastest way to use eIDAS is to treat it as a role and service map: what service you provide or rely on, what evidence you must keep, and which implementing acts and standards shape your operating model.

Section 1

eIDAS in one sentence (what it's for)

eIDAS is about making electronic transactions trustworthy across the EU internal market: who is on the other side, what was signed, and whether that signature or seal is legally effective across borders.

It combines legal effect rules with technical and supervisory mechanisms (trust lists, supervision of qualified trust services, and common standards).

  • Cross-border eID: recognition of notified electronic identification schemes and the new EUDI Wallet framework.
  • Trust services: signatures, seals, timestamps, registered delivery, website authentication, electronic archiving, electronic attestations of attributes, electronic ledgers, and related preservation or validation services.
  • Supervision and qualification: qualified trust services and providers, EU trust mark usage, and audit or supervisory expectations.
Section 2

Trust services covered (what teams usually mean by "eIDAS compliance")

Most private-sector implementations still touch trust services first. The amended text keeps the traditional services and expands the perimeter with new qualified and non-qualified services that matter for wallet ecosystems, long-term records, and high-assurance remote signing.

Treat trust services as products with lifecycles: onboarding, identity proofing, issuance, signing, validation, preservation, incident handling, and withdrawal or migration.

  • Electronic signatures and seals: advanced or qualified flows, remote signing or sealing, validation reports, and long-term validation.
  • Electronic time stamps, registered delivery, and website authentication: integrity, evidence of sending or receiving, and authenticated web presence.
  • Electronic archiving and electronic ledgers: new trust-service categories under the amended regulation, with separate technical standards and operating evidence.
  • Electronic attestations of attributes: qualified and non-qualified attribute statements that connect issuers, wallets, and relying parties.
Section 3

eIDAS 2.0 adds the EUDI Wallet + attribute layer (what changes operationally)

The EUDI Wallet introduces a user-centric identity and attribute container with mandatory Member State rollout by the end of 2026 and a technical implementation layer defined through Commission implementing regulations adopted in late 2024.

Organizations may become relying parties, issuers of attributes, wallet providers, or customers of qualified trust services that now support wallet-related evidence flows.

  • Relying party readiness: wallet acceptance strategy, verifier architecture, data minimization controls, transparency logs, and registration or notification flows where required.
  • Electronic attestations of attributes: schema governance, disclosure policies, identity-proofing assumptions, and deterministic verification pipelines.
  • Interoperability: follow Commission reference materials, the ARF, and wallet implementing regulations to avoid demo-only integrations.
Section 4

Role map: which bucket are you in?

Use this quick role map to decide which workstream matters most for you.

Most organizations fit more than one bucket (e.g., relying party + QTSP customer + attribute issuer).

  • Relying party: you authenticate users or consume attributes/signatures and must validate and log decisions.
  • Trust service provider (TSP/QTSP): you provide trust services and must align to security + supervision expectations.
  • Product/platform team: you build signing, validation, or wallet integrations and need measurable security and interoperability tests.
  • Compliance/security: you own evidence, governance cadence, incident procedures, and vendor due diligence.
Section 5

Where to go next (best subpages)

Use these pages to turn scope into implementation work.

Each page is designed to be actionable: checklists, evidence packs, and architecture decisions.

  • EUDI Wallet readiness: relying party and verifier workstreams.
  • Electronic signatures and legal effect: decide AdES vs QES and design validation evidence.
  • Qualified trust services: select QTSPs and build a due diligence + audit evidence program.
  • Deadlines calendar: plan milestones tied to deliverables, not only dates.
Recommended next step

Use EU eIDAS What It Covers as a cited research workflow

Research Copilot can take EU eIDAS What It Covers from clarifying scope and applicability with cited answers to a reusable workflow inside Sorena. Teams working on EU eIDAS can keep owners, evidence, and next steps aligned without copying this guide into separate documents.

Research workflow
Open Research Copilot for EU eIDAS What It Covers

Start from EU eIDAS What It Covers and answer scope, timing, and interpretation questions with cited outputs.

Explore next step
Talk to Sorena
Talk through EU eIDAS

Review your current process, evidence gaps, and next steps for EU eIDAS What It Covers.

Explore next step
Primary sources

References and citations

Related guides

Explore more topics

eIDAS & eIDAS 2.0 Deadlines and Compliance Calendar | EUDI Wallet Key Dates + Readiness Plan
An eIDAS deadlines calendar with the dates that matter: 1 July 2016 baseline application, the 2024 eIDAS amendment.
eIDAS 2.0 vs eIDAS | What Changed: EUDI Wallet, Attributes, Trust Services, Relying Parties
A grounded eIDAS 2.0 vs eIDAS comparison covering what Regulation (EU) 2024/1183 changed: EUDI Wallets, electronic attestations of attributes.
eIDAS Applicability Test | Are You a Relying Party, TSP/QTSP, Wallet Provider, or Attribute Issuer?
A practical applicability test for eIDAS and eIDAS 2.0: identify your roles (relying party, trust service provider/QTSP, wallet provider, attribute issuer).
eIDAS Certificates and Authentication | Qualified Certificates, QWACs, Validation, and Implementation
A deep guide to eIDAS certificates and authentication: qualified certificates for signatures and seals, website authentication certificates.
eIDAS Checklist and Evidence Pack | Audit-Ready Artifacts for Relying Parties and QTSP Programs
A deep eIDAS evidence guide: what artifacts auditors and supervisors ask for first, how to structure an evidence index.
eIDAS Compliance Checklist | Trust Services, QTSP Selection, Wallet Readiness, Evidence
An audit-ready eIDAS checklist: scope your role (relying party vs QTSP vs wallet work), choose trust services and assurance levels.
eIDAS Compliance Program | Operating Model, Controls, Tests, and Governance Cadence
A deep eIDAS compliance playbook: build a role-scoped operating model for trust services and EUDI Wallet readiness, define owners and controls.
eIDAS FAQ (EU) | QES, QTSP, Trust Services, EUDI Wallet, Evidence, and Deadlines
High-signal answers to the most searched eIDAS questions: what eIDAS covers, AdES vs QES, how to choose a QTSP, what evidence to retain.
eIDAS Penalties, Liability, and Enforcement | Supervision, Audits, and Risk Reduction
A practical eIDAS enforcement guide: how supervision and audits work for trust service providers and qualified trust services.
eIDAS Requirements (EU) | Trust Services, QTSP Controls, Wallet Obligations, Evidence Mapping
An advanced eIDAS requirements breakdown: trust services obligations, QTSP security and supervision expectations, relying party validation duties.
eIDAS vs E-SIGN Act vs UETA | EU vs US Electronic Signature Frameworks (Practical Comparison)
A practical comparison of EU eIDAS (Regulation (EU) No 910/2014, amended by Regulation (EU) 2024/1183) vs the US E-SIGN Act and UETA: legal effect.
Electronic Signatures under eIDAS | Advanced vs Qualified (AdES vs QES), Legal Effect, Validation
A deep eIDAS electronic signature guide: decide AdES vs QES, understand legal effect and evidentiary strength, design signing ceremonies and remote signing.
EUDI Wallet Readiness (eIDAS 2.0) | Relying Party + Provider Checklist and Evidence Pack
A deep EUDI Wallet readiness guide for product, security, and compliance teams: relying party acceptance strategy, identity + attribute flows.
EUDI Wallet Technical Architecture Guide | ARF-Aligned Components, Flows, and Controls
A deep technical architecture guide for the EU Digital Identity (EUDI) Wallet ecosystem: wallet components, issuer + verifier flows.
Qualified Trust Services and QTSP Selection | Due Diligence, Security, Supervision, Evidence
A deep guide to qualified trust services and QTSP selection under eIDAS: how qualification works in practice, what due diligence and contract clauses matter.