The UK’s independent authority set up to uphold information rights in the public interest, promoting openness by public bodies and data privacy for individuals.

The UK eIDAS Regulations provide the legal framework for the use of electronic trust services offered within the UK and recognise equivalent services offered in the EU.

Electronic trust services can be used in a number of ways to provide security for electronic documents, communications and transactions e.g. to help ensure that documents sent electronically have not been altered in any way and that the sender can be easily recognised. Electronic trust services allow for such security properties to be applied and then validated and thus help ensure confidence in the electronic transfer of information.

This guide is for organisations providing trust services in the UK such as certificates for electronic signatures, certificates for electronic seals, certificates for website authentication, electronic time stamps and, electronic registered delivery services.

It gives a brief introduction to the UK eIDAS Regulations, summarises the requirements for trust services, and explains the ICO’s role in supervising trust service providers in the UK.