Summation

Summation

31 January 2018 | EFPE | 2012
  • EFPE 2012 – the Europe’s largest international conference on electronic signature and PKI focused on this year over 120 participants from 17 countries.

    Among them were the representatives of the European Commission, government offices and agencies of government (including the Ministry of Economy, Administration and Digitization of Republic of Poland), local governments, producers of software and hardware solutions and certification centres providing services related to electronic signature. In this year the main topic of the conference was “Trust and Security on Digital Internal Market”.
    The event from which started the conference EFPE in this year’s was the retransmission of the press conference from Brussels which was in connection with the publication of the European Commission’s draft of the regulation on electronic identification and trust services for electronic transactions on the internal market
    (http://ec.europa.eu/information_society/policy/esignature/eu_legislation/regulation).

    It is expected that the Regulation shall replace the existing EU Directive of 1999 and will cause a breakthrough in the development of electronically supplied services.

    The acceptance of this Regulation by European Parliament shall mean the validity throughout the EU single framework for market of electronic services and shall result in revocation of national laws on electronic signatures and the need to modify a number of other legal provisions which concern this market in the Member States of EU.

    The EFPE Conference, as every year, has become an international forum for exchanging of information and views, the lectures and presentations evoked heated discussions with experts of the European Commission. A huge interest sparked the speech of Gerard Galler, the representative of General Directorate for Information Society and Media of European Commission, under the topic ”European Commission proposal for a Regulation on electronic identification and trust services for electronic transactions within the Internal Market” during which he presented for the first time in public and discussed in detail the project of new regulations. The topic of the Digital Internal Market in Europe, the security of electronic services and the usefulness of electronic signatures for ordinary citizens has dominated as a result of the deliberations of round tables and backstage conversations.

    At the end of the Conference it was formulated the Memorandum EFPE 2012 as a result and a summary of the three-day meeting addressed among others to representatives of governments which are co-responsible for the creation of normative acts which favour the development of the internal electronic market and the common European space of trust.

    The Memorandum
    XII European Forum on Electronic Signature – EFPE 2012
    Międzyzdroje, June 4-6, 2012

    At the opening of the 12th meeting of the European Forum on Electronic Signature on 4th of June The European Commission announced a draft of “Regulation on electronic identification and trusted services for electronic transactions in the internal market”. Participants of the Forum in their presentations and discussions at the round tables have evaluated the current state of the internal European electronic market and the space of the trust through the prism of this Regulation. Summary of the conference containing the conclusions reached by the participants, proposals and recommendations have been presented in this Memorandum, which is directed to the appropriate authorities and national and European institutions, including the people and institutions which were taken under the honorary patronage of:

    • Mrs. Neelie Kroes – Vice President of the European Commission responsible for the Digital Agenda,
    • Mr Waldemar Pawlak – Minister of Economy of the Republic of Poland, Deputy Prime Minister,
    • Mr Michał Boni – Minister of Administration and Digitization of the Republic of Poland,
    • Polish Chamber of Information and Telecommunications,
    • Committee on Innovation and New Technology of the Sejm of the Republic Poland,
    • European Committee for Standardization (CEN),

    and a number of offices of National and European institutions.

      1. Participants of the conference with satisfaction concluded that with high priority is still pursued work on the EC for the adoption of a common “European Interoperability Strategy and Framework”, implemented within the measure “Interoperability and Standards”, which main aim is to prevent the fragmentation of the market and accelerate the achievement of the goal of creating the internal electronic market and the common European space of trust.
      2. Participants of the conference positively evaluated the action of the European Commission to replace the existing Directive 1999/93/EC by Regulation, which will be in fact a stronger form of intervention that not only will overwrite the current Directive, but also the national laws. The use of the regulations of the European Parliament and the Council based on a decision of the European Commission should ensure that EU citizens will be able to use the tools, which will have assigned in all Member States the same legal value, the same meaning and same legal implications. Service providers will be able to provide services in other countries without having to confront the problems posed by the fragmentation of the market, different perception of the eligible service or other problems resulting from differences in legal systems.
      3. It was noted with approval that the regulations are covered by a trusted services which were not yet been fixed by law. The definition of these services and the determination of their qualified forms at the EU level is an important step towards building the European space of trust.
      4. The attention was paid to practical implications of the distinction in regulations of the electronic signature services addressed to individuals and services for electronic seals addressed to legal persons.
      5. Legal basis of the European TSP system, which for certain time has been developed, should lead to faster development of trusted digital validation services across the borders.
      6. It was noted with approval that the draft of the regulation is entirely new regularization of legal situation of SSL certificates, which are used for web authentication.
      7. It was pointed out that the establishment of a legal framework for authentication services related to the websites should be linked with user-friendly tools, which will provide a clear understanding of the level of trust for presented web pages.
      8. There is a need to clarify the criteria for recognition of the certificates outside the European Union, as well as to determine the conditions for accepting of the electronically signed document, the original of which is only in electronic form. It was paid attention to the important role of trusted and qualified validation services in this area.
      9. It was observed that currently being implemented or planned by certain Member States solutions for identification and authentication are not consistent with procedure of Regulation. Therefore it seems to be justified to recommend the governments of those countries to analyze the compatibility their own solutions with about discussed project and actively trace of legislative process associated with the acceptance of this Regulation by the European Parliament. Otherwise, the costs of developing national concepts can at least do not bring the assumed benefits for citizens of those countries on the EU market.
      10. It has been noted that new legislation should be implemented to allow the current qualified service providers for continuity management in all Member States.
      11. It was pointed out that the draft of the Regulation predicts no obligation of provision imposing on Member States to enter the electronic identity card or other electronic identification systems, but the absence of such practices in the country in this area which are in accordance with the Regulation will practically exclude its nationals operating on the EU internal market from using electronic services.
      12. The attention was paid to the need for effective exchange of experiences among the teams pursuing wide European projects such as PEPPOL, STORK or eCODEX to achieve the desired synergy. At the same time it was noted that some Member States do not participate in these projects, nor benefit from their results while making their own projects of a similar nature, but with completely different about business, technology and legal assumptions. Such actions do not encourage the realization of the Internal Market of electronic services. Measures should be taken at the European Commission to the interest of all Member States with the results of the worked out solutions in the EU-funded projects to ensure that all these countries could become beneficiaries of these projects.
      13. Participants of the conference believe that the actual is further demand from last year’s conference focusing that the public administration should increasingly rely on commercial solutions offered by service providers operating on the digital market. These solutions are based on proven models and European standards. However, participants stated with satisfaction that many of the demands made during last year’s conference (EFPE 2011) were reflected in the proposed on the 4th of June new European Regulation. The proposed framework and the rank of the proposed legislation will be in the conviction of the participants solid basis for building a common electronic market and the common European space of trust.

Dear User

The Controller of your personal data is Asseco Data Systems S.A. seated in Gdynia, ul. Podolska 21, 81-321 Gdynia, KRS No: 0000421310.

You can contact us:

  • by post (traditional mail), writing to the address indicated above;
  • by e-mail at: kontakt@assecods.pl;
  • by phone: +48 22 52 58 601.

Data Protection Officer

We have appointed a Data Protection Officer whom you can contact:

  • by post (traditional mail), writing to the address: Asseco Data Systems S.A., Biuro w Łodzi (Łódź Office), ul. Narutowicza 136, 90-146 Łódź,
  • by e-mail at: IOD@assecods.pl,
  • by phone: +48 42 675 63 60.

Objectives and legal basis of the processing

We will process your personal data to:

  • send marketing information by means of electronic communication and automation programs pursuant to the Act of July 18, 2002 on the provision of services by electronic means and in connection with Article 172(1) of the Act of July 16, 2004 on Telecommunications Law pursuant to Article 6(1)(a) of the Regulation (Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data as well as repealing Directive 95/46/EC (General Data Protection Regulation) (Official Journal of the EU L. of 2016 No. 119, page 1)).

Data retention period

Your personal data will be stored until you withdraw your consent to receive marketing information.

Recipients of personal data.

In accordance with applicable data protection laws, we provide your personal data:

  • In accordance with applicable data protection laws, we provide your personal data:
  • to our subcontractors or other persons or entities acting on our behalf with whom we will cooperate during the performance of the agreement,
  • to entities to whom we will contract data processing services, IT service providers,
  • to the relevant public authorities to the extent that we are obliged to make your data available to them.

Your rights in relation to the processing of personal data

You have the following rights related to the processing of personal data:

  • the right to object to the processing of your data,
  • the right to access your personal data,
  • the right to request the correction of your personal data,
  • the right to request the deletion of your personal data,
  • the right to request a restriction on the processing of your personal data.

All of the above rights can be exercised by submitting a request to https://www.daneosobowe.assecods.pl or by writing to the Data Protection Officer’s e-mail address: IOD@assecods.pl

Right to lodge a complaint

You have the right to lodge a complaint with the President of the Office for Personal Data Protection (to the address: Stawki 2, 00-193 Warsaw), if you think that the processing of your personal data concerning you violates the provisions of the Regulation.

Transfers of personal data to third countries

Your personal data will be stored on servers located in the European Union; however, in connection with Asseco Data Systems S.A.‘s use of cloud solutions provided by Microsoft, they may be transferred — on the basis of standard data protection clauses — to a third country. Microsoft’s standard contractual clauses in line with the templates approved by the European Commission are available at the following address: https://www.microsoft.com/en-us/licensing/product-licensing/products.aspx in the Online Services Terms (OST) section.

Requirement to provide personal data

The provision of your data is voluntary, but it is necessary for us to send information, including marketing information, by electronic means of communication.

Automatic data processing and profiling

Your data will be processed automatically, including in the form of profiling. Automated decision making will be carried out on the basis of processing of personal data provided when completing the form and data concerning activity in the Services and activity connected with our e-mail communication with you, the consequence of such processing will be to match marketing information concerning our products and services which may be of interest to you.

Privacy Police