A major challenge faced by the EU in the creation of a Digital Single Market is finding the right balance between processes that can be harmonized and standardized and those that need to remain flexible to cater to the demands of the various Member States.
It is clear that eIDAS has been designed not only keeping this mind, but actually by taking it as the fundamental guiding principle during its creation.
eIDAS has been designed to allow for seamless (cross-border) operations while ensuring technological neutrality and flexibility in terms of how its minimum standards need to be met. The Regulatory Technical Standards for Strong Customer Authentication were released to supplement the PSD2 Directive and they also supplement the provisions of the eIDAS Regulation.
The Regulatory Technical Standards (RTS) are a Commission Delegated Regulation. They cover four broad areas:
RTS mandates the use of eIDAS defined qualified certificates and seals for identification. It states that “To improve user confidence and ensure strong customer authentication, the use of electronic identification means and trust services as set out in Regulation (EU) No 910/2014 of the European Parliament and of the Council should be taken into account, in particular with regard to notified electronic identification schemes”.
This is obviously a crucial element necessary for the smooth operation of the larger machine. The use of eIDAS enabled electronic identification means and trust services in ensuring Strong Customer Authentication makes these two directives complement each other pretty well and takes us further along the path to a Digital Single Market.