eIDAS 2.0 – Are the Fears Justified? A Critical Look at Public Concerns

The revision of the EU’s framework for digital identity and trust services, often shortened to eIDAS 2.0, has triggered a wave of concern. Commentators worry about “digital ID for everything,” surveillance, mandatory wallets, and the security of highly sensitive personal data.

Some of those concerns are grounded in real risks and trade‑offs. Others are based on misunderstandings of what eIDAS 2.0 actually does, or on conflating different initiatives under one label.

This article unpacks the most common perceived issues with eIDAS 2.0, explains where there is a kernel of truth, and separates real design and governance questions from myths.

1. What eIDAS 2.0 Is – Very Briefly

The original Electronic Identification, Authentication and Trust Services Regulation (eIDAS) created an EU‑wide legal framework for:

• Recognizing national electronic identification schemes across borders.
• Trust services such as electronic signatures, electronic seals, timestamps, and website authentication.

eIDAS 2.0 expands this framework by introducing, among other things:

• The concept of a European Digital Identity Wallet (EUDI Wallet) that citizens can use to store and present electronic credentials.
• New types of electronic attestations of attributes (for example, professional qualifications, age, or organizational roles).
• Updated rules for trust service providers and supervision.

In simple terms, eIDAS 2.0 creates the legal scaffolding for cross‑border, high‑assurance digital identity and credentials in the EU.

2. The Main Public Perceived Issues

Public commentary usually clusters around a handful of themes:

• “A unified EU digital ID will enable mass surveillance.”
• “Everyone will be forced to use one state digital identity for everything.”
• “The wallet will be insecure and easy to hack.”