- Latest available (Revised)
- Original (As adopted by EU)
Regulation (EU) No 910/2014 of the European Parliament and of the CouncilShow full title
Regulation (EU) No 910/2014 of the European Parliament and of the Council of 23 July 2014 on electronic identification and trust services for electronic transactions in the internal market and repealing Directive 1999/93/EC
You are here:
- Regulations originating from the EU
- 2014 No. 910
- Annexes only
What Version
Advanced Features
- Show Geographical Extent(e.g. England, Wales, Scotland and Northern Ireland)
- Show Timeline of Changes
More Resources
This is a Regulation originating from the EU
This is a legislation item that originated from the EU
After exit day there will be three versions of this legislation to consult for different purposes. The legislation.gov.uk version is the version that applies in the UK. The EU Version currently on EUR-lex is the version that currently applies in the EU i.e you may need this if you operate a business in the EU.
The web archive version is the official version of this legislation item as it stood on exit day before being published to legislation.gov.uk and any subsequent UK changes and effects applied. The web archive also captured associated case law and other language formats from EUR-Lex.
Changes over time for: Regulation (EU) No 910/2014 of the European Parliament and of the Council (Annexes only)
Changes to legislation:
There are currently no known outstanding effects for the Regulation (EU) No 910/2014 of the European Parliament and of the Council.
Changes to Legislation
Revised legislation carried on this site may not be fully up to date. At the current time any known changes or effects made by subsequent legislation have been applied to the text of the legislation you are viewing by the editorial team. Please see ‘Frequently Asked Questions’ for details regarding the timescales for which new effects are identified and recorded on this site.
ANNEX IU.K.REQUIREMENTS FOR QUALIFIED CERTIFICATES FOR ELECTRONIC SIGNATURES
Qualified certificates for electronic signatures shall contain:
(a)
an indication, at least in a form suitable for automated processing, that the certificate has been issued as a qualified certificate for electronic signature;
(b)
a set of data unambiguously representing the qualified trust service provider issuing the qualified certificates including at least F1...:
for a legal person: the name and, where applicable, registration number as stated in the official records,
for a natural person: the person’s name;
(c)
at least the name of the signatory, or a pseudonym; if a pseudonym is used, it shall be clearly indicated;
(d)
electronic signature validation data that corresponds to the electronic signature creation data;
(e)
details of the beginning and end of the certificate’s period of validity;
(f)
the certificate identity code, which must be unique for the qualified trust service provider;
(g)
the advanced electronic signature or advanced electronic seal of the issuing qualified trust service provider;
(h)
the location where the certificate supporting the advanced electronic signature or advanced electronic seal referred to in point (g) is available free of charge;
(i)
the location of the services that can be used to enquire about the validity status of the qualified certificate;
(j)
where the electronic signature creation data related to the electronic signature validation data is located in a qualified electronic signature creation device, an appropriate indication of this, at least in a form suitable for automated processing.
Textual Amendments
F1Words in Annex 1 omitted (31.12.2020) by virtue of The Electronic Identification and Trust Services for Electronic Transactions (Amendment etc.) (EU Exit) Regulations 2019 (S.I. 2019/89), reg. 1(2), Sch. para. 42; 2020 c. 1, Sch. 5 para. 1(1)
ANNEX IIU.K. REQUIREMENTS FOR QUALIFIED ELECTRONIC SIGNATURE CREATION DEVICES
1.Qualified electronic signature creation devices shall ensure, by appropriate technical and procedural means, that at least:U.K.
(a)
the confidentiality of the electronic signature creation data used for electronic signature creation is reasonably assured;
(b)
the electronic signature creation data used for electronic signature creation can practically occur only once;
(c)
the electronic signature creation data used for electronic signature creation cannot, with reasonable assurance, be derived and the electronic signature is reliably protected against forgery using currently available technology;
(d)
the electronic signature creation data used for electronic signature creation can be reliably protected by the legitimate signatory against use by others.
2.Qualified electronic signature creation devices shall not alter the data to be signed or prevent such data from being presented to the signatory prior to signing.U.K.
3.Generating or managing electronic signature creation data on behalf of the signatory may only be done by a qualified trust service provider.U.K.
4.Without prejudice to point (d) of point 1, qualified trust service providers managing electronic signature creation data on behalf of the signatory may duplicate the electronic signature creation data only for back-up purposes provided the following requirements are met:U.K.
(a)
the security of the duplicated datasets must be at the same level as for the original datasets;
(b)
the number of duplicated datasets shall not exceed the minimum needed to ensure continuity of the service.
ANNEX IIIU.K.REQUIREMENTS FOR QUALIFIED CERTIFICATES FOR ELECTRONIC SEALS
Qualified certificates for electronic seals shall contain:
(a)
an indication, at least in a form suitable for automated processing, that the certificate has been issued as a qualified certificate for electronic seal;
(b)
a set of data unambiguously representing the qualified trust service provider issuing the qualified certificates including at least F2...:
for a legal person: the name and, where applicable, registration number as stated in the official records,
for a natural person: the person’s name;
(c)
at least the name of the creator of the seal and, where applicable, registration number as stated in the official records;
(d)
electronic seal validation data, which corresponds to the electronic seal creation data;
(e)
details of the beginning and end of the certificate’s period of validity;
(f)
the certificate identity code, which must be unique for the qualified trust service provider;
(g)
the advanced electronic signature or advanced electronic seal of the issuing qualified trust service provider;
(h)
the location where the certificate supporting the advanced electronic signature or advanced electronic seal referred to in point (g) is available free of charge;
(i)
the location of the services that can be used to enquire as to the validity status of the qualified certificate;
(j)
where the electronic seal creation data related to the electronic seal validation data is located in a qualified electronic seal creation device, an appropriate indication of this, at least in a form suitable for automated processing.
Textual Amendments
F2Words in Annex 3 omitted (31.12.2020) by virtue of The Electronic Identification and Trust Services for Electronic Transactions (Amendment etc.) (EU Exit) Regulations 2019 (S.I. 2019/89), reg. 1(2), Sch. para. 43; 2020 c. 1, Sch. 5 para. 1(1)
ANNEX IVU.K.REQUIREMENTS FOR QUALIFIED CERTIFICATES FOR WEBSITE AUTHENTICATION
Qualified certificates for website authentication shall contain:
(a)
an indication, at least in a form suitable for automated processing, that the certificate has been issued as a qualified certificate for website authentication;
(b)
a set of data unambiguously representing the qualified trust service provider issuing the qualified certificates including at least F3...:
for a legal person: the name and, where applicable, registration number as stated in the official records,
for a natural person: the person’s name;
(c)
for natural persons: at least the name of the person to whom the certificate has been issued, or a pseudonym. If a pseudonym is used, it shall be clearly indicated;
for legal persons: at least the name of the legal person to whom the certificate is issued and, where applicable, registration number as stated in the official records;
(d)
elements of the address, including at least city and State, of the natural or legal person to whom the certificate is issued and, where applicable, as stated in the official records;
(e)
the domain name(s) operated by the natural or legal person to whom the certificate is issued;
(f)
details of the beginning and end of the certificate’s period of validity;
(g)
the certificate identity code, which must be unique for the qualified trust service provider;
(h)
the advanced electronic signature or advanced electronic seal of the issuing qualified trust service provider;
(i)
the location where the certificate supporting the advanced electronic signature or advanced electronic seal referred to in point (h) is available free of charge;
(j)
the location of the certificate validity status services that can be used to enquire as to the validity status of the qualified certificate.
Textual Amendments
F3Words in Annex 4 omitted (31.12.2020) by virtue of The Electronic Identification and Trust Services for Electronic Transactions (Amendment etc.) (EU Exit) Regulations 2019 (S.I. 2019/89), reg. 1(2), Sch. para. 44; 2020 c. 1, Sch. 5 para. 1(1)
Options/Help
Print Options
PrintThe Whole Regulation
PrintThe Annexes only
Legislation is available in different versions:
Latest Available (revised):The latest available updated version of the legislation incorporating changes made by subsequent legislation and applied by our editorial team. Changes we have not yet applied to the text, can be found in the ‘Changes to Legislation’ area.
Original (As adopted by EU): The original version of the legislation as it stood when it was first adopted in the EU. No changes have been applied to the text.
See additional information alongside the content
Geographical Extent: Indicates the geographical area that this provision applies to. For further information see ‘Frequently Asked Questions’.
Show Timeline of Changes: See how this legislation has or could change over time. Turning this feature on will show extra navigation options to go to these specific points in time. Return to the latest available version by using the controls above in the What Version box.
Opening Options
Different options to open legislation in order to view more content on screen at once
More Resources
Access essential accompanying documents and information for this legislation item from this tab. Dependent on the legislation item being viewed this may include:
- the original print PDF of the as adopted version that was used for the EU Official Journal
- lists of changes made by and/or affecting this legislation item
- all formats of all associated documents
- correction slips
- links to related legislation and further information resources
Timeline of Changes
This timeline shows the different versions taken from EUR-Lex before exit day and during the implementation period as well as any subsequent versions created after the implementation period as a result of changes made by UK legislation.
The dates for the EU versions are taken from the document dates on EUR-Lex and may not always coincide with when the changes came into force for the document.
For any versions created after the implementation period as a result of changes made by UK legislation the date will coincide with the earliest date on which the change (e.g an insertion, a repeal or a substitution) that was applied came into force. For further information see our guide to revised legislation on Understanding Legislation.
More Resources
Use this menu to access essential accompanying documents and information for this legislation item. Dependent on the legislation item being viewed this may include:
- the original print PDF of the as adopted version that was used for the print copy
- correction slips
Click 'View More' or select 'More Resources' tab for additional information including:
- lists of changes made by and/or affecting this legislation item
- confers power and blanket amendment details
- all formats of all associated documents
- links to related legislation and further information resources
All content is available under the Open Government Licence v3.0 except where otherwise stated. This site additionally contains content derived from EUR-Lex, reused under the terms of the Commission Decision 2011/833/EU on the reuse of documents from the EU institutions. For more information see the EUR-Lex public statement on re-use.