eIDAS 2.0: What the New European Regulation Changes for Electronic Signatures

In force since 20 May 2024, the eIDAS 2.0 regulation redefines digital identity in Europe. EUDI Wallet, new trust services, deployment timeline: here is what you need to know.

eIDAS 2.0: why a revision was needed

The original eIDAS regulation, adopted in 2014, laid the foundations for qualified electronic signatures in Europe. It established the three signature levels (SES, AES, QES), created the framework for qualified trust service providers (QTSPs) and established the principle of mutual recognition of qualified signatures between member states.

Ten years on, this framework was showing its limits. Cross-border digital identity adoption remained fragmented, national electronic identification systems were poorly interoperable, and the private sector was largely excluded. Digital usage had evolved profoundly — widespread smartphones, online services, remote working — without the regulatory framework keeping pace.

📋 eIDAS 2.0 in brief

Adopted on 26 March 2024, published in the EU Official Journal on 30 April 2024 as Regulation (EU) 2024/1183, entering into force on 20 May 2024. It amends and expands the 2014 eIDAS regulation without fully repealing it. Operational implementation follows a progressive timeline through 2026–2027.

The three major innovations of eIDAS 2.0

1. The European Digital Identity Wallet (EUDI Wallet)

This is the headline innovation of eIDAS 2.0. Every EU member state must make available to its citizens, residents and businesses at least one digital identity wallet — the EUDI Wallet (European Digital Identity Wallet) — by the end of December 2026.

In practice, the EUDI Wallet is a mobile application enabling users to store and present certified digital credentials: identity document, diplomas, professional qualifications, driving licence, health data… all under the user’s exclusive control, who decides precisely which information to share and with whom.

🔐 What the EUDI Wallet changes for electronic signatures

The wallet can carry a qualified certificate enabling a qualified electronic signature (QES) to be issued directly from the smartphone, without any physical device (smart card, USB token). State-verified identity is instantly presentable, making QES more accessible and seamless than ever.

2. New qualified trust services

eIDAS 2.0 expands the list of trust services recognised at European level. Alongside existing services (qualified signature, electronic seal, timestamp, registered electronic delivery, website authentication), notable additions include:

Qualified electronic archiving: long-term preservation of signed documents with guaranteed integrity and readability.
Qualified electronic attestations of attributes (QEAA): digital certificates attesting to a person’s characteristics or rights (age, professional status, qualification), directly presentable from the EUDI Wallet.
Qualified electronic ledger: anchoring of data in a tamper-proof register (blockchain-type technology recognised within the European framework).

3. Extension to the private sector and enhanced interoperability

eIDAS 1.0 was primarily aimed at public administrations. eIDAS 2.0 imposes a mandatory obligation to accept the wallet and new digital credentials on a broader scope: very large online platforms (as defined by the Digital Services Act), services subject to AML regulations (banks, insurers, accountancy firms) and designated public services.

eIDAS 1.0 vs eIDAS 2.0: what changes

⚙️ eIDAS 1.0 (2014)

Framework primarily for the public sector
Limited cross-border interoperability in practice
No identity solution on the end-user side
QES via physical token or smart card
No recognised attribute attestation
No qualified electronic archiving

🚀 eIDAS 2.0 (2024)

Mandatory extension to the private sector
EUDI Wallet interoperable across the EU
Certified digital identity accessible to all
QES via smartphone (certified software QSCD)
Qualified attribute attestations (QEAA)
Qualified electronic archiving recognised

💡 What does not change

The three signature levels (SES, AES, QES) defined by eIDAS 1.0 are maintained unchanged in eIDAS 2.0. The legal hierarchy remains the same: QES is still the only level equivalent to a handwritten signature. eIDAS 2.0 strengthens and expands the framework — it does not overturn it.

Deployment timeline: key dates

The implementation of eIDAS 2.0 follows a progressive timeline, driven by implementing acts published by the European Commission. Here are the major milestones.

May
2024

Regulation (EU) 2024/1183 enters into forceeIDAS 2.0 has been formally in force since 20 May 2024. The legal framework exists; operational obligations follow progressively.

Nov.
2024

Publication of implementing acts for EUDI Wallet and QEAATechnical specifications for the digital identity wallet and qualified electronic attribute attestations are published. Member states and developers can launch implementation work.

May
2025

Publication of implementing acts for trust servicesTechnical specifications for new qualified trust services (archiving, electronic ledger, etc.) are published.

End
2026

Every member state must deploy its EUDI Wallet ✦ Main deadlineLegal obligation for all 27 member states to provide at least one compliant digital identity wallet to their citizens, residents and businesses by December 2026.

End
2027

Mandatory acceptance by relevant private actorsLarge online platforms, AML-regulated actors and designated public services must be able to accept the wallet as a means of identification.

2030

Mass adoption ambitionThe European Commission’s stated goal is for 80% of EU citizens to use a digital identity solution by 2030.

What eIDAS 2.0 concretely changes for qualified signatures

A more accessible QES, without physical hardware

Under eIDAS 1.0, qualified signatures often required a physical device: smart card (such as the former Belgian .beID), USB token or card reader. eIDAS 2.0 enshrines remote QES via smartphone as the standard, through the EUDI Wallet carrying a certified software QSCD.

Solutions such as itsme® and Evrotrust, already available on e-Signature.eu, are precisely this model: qualified signature from the smartphone, no additional hardware, with strong authentication guaranteed by an accredited QTSP. These are solutions natively compatible with the spirit of eIDAS 2.0.

Enhanced pan-European interoperability

Under eIDAS 1.0, mutual recognition of qualified signatures was legally established but technically difficult to implement across member states. The EUDI Wallet changes this: state-verified identity is directly presentable in any EU country, without asking the user to re-register or prove their identity again.

In practice, a Belgian citizen using their EUDI Wallet will be able to sign a contract with a Spanish, French or German company with the same legal value as a handwritten signature — without administrative friction.

Qualified electronic archiving: a complementary building block

eIDAS 2.0 introduces the qualified electronic archiving service, guaranteeing long-term preservation of signed documents while maintaining their evidential value. For companies signing contracts, HR documents or regulatory records, this opens the way to a complete evidence file: qualified signature + audit trail + certified archiving.

✅ What this means for e-Signature.eu users

The qualified signature methods available on e-Signature.eu — itsme® (32 countries) and Evrotrust (62 countries) — are compliant with the eIDAS QES framework and natively aligned with eIDAS 2.0 principles: strong authentication, certified software QSCD, QTSP accredited on the EU Trusted List. You benefit today from a qualified signature that anticipates tomorrow’s standards.

eIDAS 2.0 and businesses: what to anticipate

🏢 You are an SME or a freelancer

As a signature service user, eIDAS 2.0 creates no immediate obligation for you. You will, however, progressively benefit from more accessible QES via the wallet, better cross-border interoperability and enhanced evidential value for your signed documents. Continuing to use compliant QES methods (itsme®, Evrotrust) puts you on the right track.

🔗 You integrate signatures via API

If you integrate electronic signatures into your workflows via the e-Signature.eu API, the transition to eIDAS 2.0 does not affect your current integration. Available QES methods remain compliant. In time, integrating the EUDI Wallet as an authentication method will be a development to factor into your technical roadmap — but without immediate urgency.

🏦 You are a large platform or a regulated actor (bank, insurer, accountancy firm)

The end-2027 deadline applies directly to you: you will need to be able to accept the EUDI Wallet as a means of identification. Start auditing your identification workflows and identifying your qualified trust service providers. Choosing a QTSP accredited on the EU Trusted List — such as those underpinning e-Signature.eu — is the right foundation.

⚠️ Watch out for the transition period

Between 2024 and 2027, current systems (itsme®, national electronic identity cards, physical tokens) will coexist with new eIDAS 2.0 devices. Both channels must be maintained in parallel during this period — users without a wallet must still be able to sign. Do not remove your current methods before the wallet is widely deployed.

Frequently asked questions about eIDAS 2.0

Do existing qualified signatures remain valid?

Yes, without restriction. eIDAS 2.0 does not call into question signatures already issued. QES produced via itsme® or Evrotrust retain their full legal value. The revised regulation expands the framework; it does not modify the value of existing signatures.

Does the EUDI Wallet replace itsme® or Evrotrust?

No — at least not in the immediate term. The EUDI Wallet is a new complementary device, which will eventually enable QES to be issued via state-certified digital identity. itsme® and Evrotrust remain fully valid QTSP-backed solutions and are themselves likely to evolve to integrate EUDI Wallet compatibility in their roadmap.

Does eIDAS 2.0 apply outside the EU?

Not directly. eIDAS 2.0 is a European regulation that applies to EU member states. Outside the EU, the legal value of an electronic signature depends on the local law of the country concerned. This is why solutions such as Veriff (AES, 198 countries) remain relevant for international exchanges with partners outside the eIDAS zone.

Key takeaways

eIDAS 2.0 is Regulation (EU) 2024/1183, in force since 20 May 2024. It revises and expands eIDAS 1.0 without fully replacing it.
The EUDI Wallet is the central innovation: every member state must deploy it by end-2026. It enables storing and presenting state-certified digital identity across the EU.
The three signature levels (SES, AES, QES) and the legal value of QES are unchanged. eIDAS 2.0 strengthens the framework; it does not alter the hierarchy.
QES via smartphone (software QSCD) becomes the standard: itsme® and Evrotrust, available on e-Signature.eu, already anticipate this model today.
New qualified services: qualified electronic archiving, attribute attestations (QEAA), electronic ledger.
Timeline: EUDI Wallet mandatory by end-2026, acceptance by the relevant private sector by end-2027.
Current qualified signatures (itsme®, Evrotrust) remain fully valid and compliant during and after the transition.

Sign today with an eIDAS-compliant QES

itsme® and Evrotrust on e-Signature.eu: qualified signatures via smartphone, no subscription, aligned with eIDAS 2.0 standards.

Discover pricing →