Information Commissioner's Office
ICO approves the first UK eIDAS Regulations Qualified Trust Service Provider
The Information Commissioner’s Office has approved GlobalSign as the UK’s first qualified trust service provider [QTSP] under the UK eIDAS Regulations.
Trust services are important to businesses as they help ensure electronic transactions can happen securely and legally using mechanisms such as electronic signatures.
To become a QTSP organisations must undergo a conformity assessment to demonstrate they meet the requirements of the UK eIDAS Regulations. This is then checked by the ICO.
GMO GlobalSign Ltd is the first company globally to have gone through this process in the UK under the UK eIDAS Regulations and is now a qualified trust service provider for the following services:
- Qualified certificates for electronic signatures.
- Qualified certificates for electronic seals.
Anulka Clarke, Acting Director of Regulatory Assurance yesterday said:
“Trust is often described as the currency of business and that’s especially true in the digital economy. Clients, consumers and companies need confidence when they’re transferring information electronically. That’s why QTSPs are so important. They give businesses assurance and present an opportunity for growth, development and innovation.”
Arvid Vermote, Chief Information Security Officer for GlobalSign yesterday said:
“We are particularly proud to be the first Certificate Authority in the world to accomplish this. As always, the level of assurance QTSP recognition offers is critical, especially for companies in regulated industries such as banking, insurance and energy marketplaces. Being recognized as a QTSP within the UK and the EU will continue to offer many important opportunities for GlobalSign.”
GlobalSign have now been added to the UK’s Trusted List of Trust Service Providers, which is managed by tScheme.
Notes to Editors
- The UK eIDAS Regulations set out rules for UK trust services and establishes a legal framework for the provision and effect of electronic signatures, electronic seals, electronic time stamps, electronic documents, electronic registered delivery services and certificate services for website authentication.
- Following the UK withdrawal from the EU the eIDAS Regulation was adopted into UK law and amended by The Electronic Identification and Trust Services for Electronic Transactions (Amendment etc.) (EU Exit) Regulations 2019). In addition, the existing UK trust services legislation, The Electronic Identification and Trust Services for Electronic Transactions Regulation 2016 (2016 No.696)) was also amended. Taken together, these regulations are referred to as the UK eIDAS Regulations.
- The ICO has responsibility for supervision of the trust service provisions of the UK eIDAS Regulations. The ICO can grant and revoke qualified status for trust service providers established in the UK, approve or reject qualified trust services, report on security breaches, carry out audits and take enforcement action.
Latest News from
Information Commissioner's Office
International progress for domestic benefit: why the ICO convened a G7 meeting on data flows20/09/2021 16:15:00
A blog by Elizabeth Denham, UK Information Commissioner
We Buy Any Car, Sports Direct and Saga fined £495,000 after sending millions of ‘frustrating and intrusive’ nuisance messages.15/09/2021 13:20:00
The ICO has today announced fines totalling £495,000 to well-known companies that between them sent more than 354 million nuisance messages.
Blog: Sharing personal data in an emergency – a guide for universities and colleges15/09/2021 09:15:00
A blog by Viv Adams, Principal Policy Adviser in the ICO Parliament and Government Affairs team
G7 data protection and privacy authorities’ meeting: communiqué13/09/2021 09:10:00
The UK Information Commissioner’s Office (ICO) brought together data protection and privacy authorities from G7 countries, as well as guests from the Organisation for Economic Cooperation and Development (OECD) and the World Economic Forum (WEF), for a discussion this week on shared emerging challenges that need closer international collaboration.
Statement in response to DCMS consultation into proposed data protection reform10/09/2021 14:10:00
Statement given yesterday in response to DCMS consultation into proposed data protection reform.
ICO to call on G7 countries to tackle cookie pop-ups challenge07/09/2021 14:10:00
The UK Information Commissioner’s Office (ICO) will today call on fellow G7 data protection and privacy authorities to work together to overhaul cookie consent pop-ups, so people’s privacy is more meaningfully protected and businesses can provide a better web browsing experience.
ICO fines Glasgow company for making half a million nuisance calls05/09/2021 09:10:00
The Information Commissioner’s Office (ICO) has fined Glasgow-based company DialADeal Scotland Ltd (DDSL) for making more than half a million nuisance marketing calls.
Statement on DCMS announcement of next Information Commissioner26/08/2021 12:10:00
The Department for Culture, Media and Sport has today announced that John Edwards is the Government's preferred nominee to be the next Information Commissioner.