this post was submitted on 06 Feb 2025
46 points (96.0% liked)

Europe

2096 readers
1092 users here now

News and information from Europe 🇪🇺

(Current banner: La Mancha, Spain. Feel free to post submissions for banner images.)

Rules (2024-08-30)

  1. This is an English-language community. Comments should be in English. Posts can link to non-English news sources when providing a full-text translation in the post description. Automated translations are fine, as long as they don't overly distort the content.
  2. No links to misinformation or commercial advertising. When you post outdated/historic articles, add the year of publication to the post title. Infographics must include a source and a year of creation; if possible, also provide a link to the source.
  3. Be kind to each other, and argue in good faith. Don't post direct insults nor disrespectful and condescending comments. Don't troll nor incite hatred. Don't look for novel argumentation strategies at Wikipedia's List of fallacies.
  4. No bigotry, sexism, racism, antisemitism, dehumanization of minorities, or glorification of National Socialism.
  5. Be the signal, not the noise: Strive to post insightful comments. Add "/s" when you're being sarcastic (and don't use it to break rule no. 3).
  6. If you link to paywalled information, please provide also a link to a freely available archived version. Alternatively, try to find a different source.
  7. Light-hearted content, memes, and posts about your European everyday belong in !yurop@lemm.ee. (They're cool, you should subscribe there too!)
  8. Don't evade bans. If we notice ban evasion, that will result in a permanent ban for all the accounts we can associate with you.
  9. No posts linking to speculative reporting about ongoing events with unclear backgrounds. Please wait at least 12 hours. (E.g., do not post breathless reporting on an ongoing terror attack.)

(This list may get expanded when necessary.)

We will use some leeway to decide whether to remove a comment.

If need be, there are also bans: 3 days for lighter offenses, 14 days for bigger offenses, and permanent bans for people who don't show any willingness to participate productively. If we think the ban reason is obvious, we may not specifically write to you.

If you want to protest a removal or ban, feel free to write privately to the mods: @federalreverse@feddit.org, @poVoq@slrpnk.net, or @anzo@programming.dev.

founded 7 months ago
MODERATORS
federalreverse@feddit.org
poVoq@slrpnk.net
anzo@programming.dev
46
"One Step Forward, Two Steps Back:" Digital Rights Group Slams The European Commission's New Draft For The Upcoming eID Wallet (epicenter.works)
submitted 12 hours ago by Anyone@slrpnk.net to c/europe@feddit.org
0 comments fedilink hide all child comments
 

Download the analysis here (pdf)

The implementation of the regulation for a European electronic identity (EUid) based on digital wallets faces new criticism by digital rights groups. One of them, Austria-based Epic, recently published an open letter, and urged the European Commission to close certain loopholes that would lead to severe privacy and transparency problems.

Soon after the letter, the updated implementing acts seemed like a step in the right direction – "until we discovered completely new weak spots that not only endanger user privacy but also contradict the European Parliament’s agreement," Epicenter says in an analysis.

The Commission's new draft contains "privacy and transparency shortcomings [that] undermine trust in the eIDAS ecosystem and the democratic process as a whole. They must be fixed immediately," Epicenter adds.

A core pillar of trust in the eIDAS ecosystem is the public relying party registry. This registry is essential to enable oversight by public watchdogs and to ensure transparency. However, the current system makes it nearly impossible to obtain a meaningful overview of how relying parties are using digital identities – undermining the sole purpose of a transparency register.

The current draft of implementing acts fails to clearly distinguish between cases where a relying party is legally required to identify wallet users and other scenarios where such identification is optional. Practically speaking, the Wallet doesn’t know if it interacts with a bank that has a legal obligation to know who their customers are or Facebook that have no right to identify or track us.

Since the right to use pseudonyms depends on this distinction, it is critical that relying parties explicitly state whether a legal identification obligation applies to them and based on which law in particular. This lack of clarity cancels out the right to pseudonymity and makes the enforcement nearly impossible.

Even more concerning are the controversial changes made behind closed doors, after the public consultation process had already concluded, and at the explicit request of powerful industry players. These changes reintroduce a unique, persistent identifier and extend its scope towards the private sector – assigning users a lifelong, unchangeable digital identity number.

This proposal clearly contradicts the eIDAS regulation. The European Parliament had already drawn a clear red line against such an identifier – and now, it is being reintroduced in an undemocratic manner through an implementing act.

no comments (yet)
sorted by: hot top controversial new old
there doesn't seem to be anything here