About¶
The EU Digital Identity Wallet¶
The European Digital Identity Regulation (EUDI Regulation, Regulation (EU) No 910/2014, consolidated as amended in 2024) gives every EU citizen, resident and business the right to a European Digital Identity Wallet: a secure app, under the user's control, to identify themselves and share verified attributes across the Union. It makes cross-border recognition effective and opens it to the private sector.
A Wallet can be provided directly by a Member State or by a private company it officially recognises. By design, the EU Digital Identity Wallet is:
- available to anyone who wants to use it — any EU citizen, resident or business that wishes to make use of the EU Digital Identity can do so;
- widely usable — to identify Users when accessing public and private digital services across the EU;
- controlled by Users — people choose and keep track of the identity, data and certificates they share; anything not necessary is not shared.
The Architecture and Reference Framework¶
On 3 June 2021 the European Commission adopted Recommendation (EU) 2021/946, calling on Member States to work with the Commission on a Common Union Toolbox: a technical Architecture and Reference Framework (the ARF), a set of common standards and technical specifications, and common guidelines and best practices.
This work is carried out by the European Digital Identity Cooperation Group (EDICG), together with the Commission and, where relevant, private-sector operators. The current ARF is based on the adopted legal text and the Commission Implementing Regulations listed below.
Commission Implementing Regulations¶
The ARF builds on Regulation (EU) No 910/2014 and the following Commission Implementing Regulations (CIRs):
| Reference | Subject |
|---|---|
| CIR 2024/2977 | PID and EAA |
| CIR 2024/2979 | Integrity and core functionalities |
| CIR 2024/2980 | Ecosystem notifications |
| CIR 2024/2981 | Certification of Wallet Solutions |
| CIR 2024/2982 | Protocols and interfaces |
| CIR 2025/846 | Cross-border identity matching |
| CIR 2025/847 | Security breaches of EU Digital Identity Wallets |
| CIR 2025/848 | Registration of Wallet Relying Parties |
| CIR 2025/849 | List of certified EU Digital Identity Wallets |
| CIR 2025/1566 | Verifying the identity and attributes of a QC or QEAA holder |
| CIR 2025/1567 | Management of remote QSCDs as qualified trust services |
| CIR 2025/1568 | Peer reviews of eID schemes |
| CIR 2025/1569 | QEAAs and EAAs from public-sector authentic sources |
| CIR 2025/1570 | Notification of information on certified QSCDs |
| CIR 2025/1571 | Annual reports by supervisory bodies |
| CIR 2025/1572 | Notification of intention to initiate qualified trust services |
| CIR 2025/1929 | Qualified electronic time stamps |
| CIR 2025/1942 | Qualified validation services for QES and seals |
| CIR 2025/1943 | Reference standards for qualified certificates (signatures and seals) |
| CIR 2025/1944 | Qualified electronic registered delivery services |
| CIR 2025/1945 | Validation of qualified and advanced signatures and seals |
| CIR 2025/1946 | Qualified preservation services for QES and seals |
| CIR 2025/2160 | Risk management for non-qualified trust services |
| CIR 2025/2162 | Accreditation of conformity assessment bodies |
| CID 2025/2164 | Standard version for the trusted-lists template |
| CIR 2025/2527 | Qualified certificates for website authentication |
| CIR 2025/2530 | Requirements for qualified trust service providers |
| CIR 2025/2531 | Qualified electronic ledgers |
| CIR 2025/2532 | Qualified electronic archiving services |
Contributing and versioning¶
Contributions are welcome — see CONTRIBUTING.md. The ARF follows Semantic Versioning; released versions are available as tags and releases, and the work reflects the contributions of many people.