Information Commissioner's Office
ICO approves the first UK eIDAS Regulations Qualified Trust Service Provider
The Information Commissioner’s Office has approved GlobalSign as the UK’s first qualified trust service provider [QTSP] under the UK eIDAS Regulations.
Trust services are important to businesses as they help ensure electronic transactions can happen securely and legally using mechanisms such as electronic signatures.
To become a QTSP organisations must undergo a conformity assessment to demonstrate they meet the requirements of the UK eIDAS Regulations. This is then checked by the ICO.
GMO GlobalSign Ltd is the first company globally to have gone through this process in the UK under the UK eIDAS Regulations and is now a qualified trust service provider for the following services:
- Qualified certificates for electronic signatures.
- Qualified certificates for electronic seals.
Anulka Clarke, Acting Director of Regulatory Assurance yesterday said:
“Trust is often described as the currency of business and that’s especially true in the digital economy. Clients, consumers and companies need confidence when they’re transferring information electronically. That’s why QTSPs are so important. They give businesses assurance and present an opportunity for growth, development and innovation.”
Arvid Vermote, Chief Information Security Officer for GlobalSign yesterday said:
“We are particularly proud to be the first Certificate Authority in the world to accomplish this. As always, the level of assurance QTSP recognition offers is critical, especially for companies in regulated industries such as banking, insurance and energy marketplaces. Being recognized as a QTSP within the UK and the EU will continue to offer many important opportunities for GlobalSign.”
GlobalSign have now been added to the UK’s Trusted List of Trust Service Providers, which is managed by tScheme.
Notes to Editors
- The UK eIDAS Regulations set out rules for UK trust services and establishes a legal framework for the provision and effect of electronic signatures, electronic seals, electronic time stamps, electronic documents, electronic registered delivery services and certificate services for website authentication.
- Following the UK withdrawal from the EU the eIDAS Regulation was adopted into UK law and amended by The Electronic Identification and Trust Services for Electronic Transactions (Amendment etc.) (EU Exit) Regulations 2019). In addition, the existing UK trust services legislation, The Electronic Identification and Trust Services for Electronic Transactions Regulation 2016 (2016 No.696)) was also amended. Taken together, these regulations are referred to as the UK eIDAS Regulations.
- The ICO has responsibility for supervision of the trust service provisions of the UK eIDAS Regulations. The ICO can grant and revoke qualified status for trust service providers established in the UK, approve or reject qualified trust services, report on security breaches, carry out audits and take enforcement action.
Latest News from
Information Commissioner's Office
ICO fines facial recognition database company Clearview AI Inc more than £7.5m and orders UK data to be deleted24/05/2022 09:10:00
The Information Commissioner’s Office (ICO) has fined Clearview AI Inc £7,552,800 for using images of people in the UK, and elsewhere, that were collected from the web and social media to create a global online database that could be used for facial recognition.
Director’s Update: Doing more with less – working with the FOI community to improve future FOI regulation23/05/2022 12:25:00
This is the second in a series of updates from Warren Seddon, Director of FOI and Transparency.
Blog: What does equality of access really mean when developing a career with a visual impairment?19/05/2022 12:25:00
On Global Accessibility Awareness Day, Paul Arnold, ICO Deputy Chief Executive and Chief Operating Officer shares his story.
Blog: A day in the life of the ICO’s information management team13/05/2022 12:25:00
“It’s important to remember the people behind the information.”
ICO response to Channel 4 ‘Inside the Metaverse’ documentary29/04/2022 12:25:00
A recent C4 Dispatches – Inside the Metaverse looked at the metaverse and how the platforms enforce against users that act inappropriately.
Conclusion of ICO investigation into unauthorised disclosure of CCTV footage from DHSC – 19 April 202220/04/2022 12:25:00
The ICO found insufficient evidence to prosecute two people suspected of unlawfully obtaining and disclosing CCTV footage from the Department for Health and Social Care (DHSC).
Statement following conclusion of ICO investigation into unauthorised disclosure of CCTV footage from DHSC13/04/2022 16:20:00
The Information Commissioner’s Office (ICO) has found insufficient evidence to prosecute two people suspected of unlawfully obtaining and disclosing CCTV footage from the Department for Health and Social Care (DHSC).
Children's privacy and international collaboration12/04/2022 15:20:00
John Edwards, UK Information Commissioner, is in Washington DC this week to meet with regulators, civil society, lawmakers and tech companies, as well as present the work of the ICO at the IAPP Global Privacy Summit.