Skip to main content

Overview

The eIDAS Regulation (EU 910/2014) establishes a framework for electronic identification and trust services across EU member states. It defines three Levels of Assurance (LoA) for identity verification: Low, Substantial, and High. iDenfy holds an eIDAS Declaration of Conformity (Certificate No. eIDAS250020) issued by the Electrotechnical Testing Institute (EZU) in Prague, certifying our remote ID proofing service against EU Regulation 910/2014, ETSI TS 119 461, ETSI EN 319 401, and ISO/IEC 30107-3:2023. This makes iDenfy one of the few identity verification providers independently certified to the highest European standards for electronic identification and trust services.

iDenfy’s eIDAS certification

DetailValue
Certificate No.eIDAS250020
Certification bodyElectrotechnical Testing Institute (EZU), Prague, Czech Republic
AccreditationCzech Accreditation Institute (Certification Body No. 3018)
Certified serviceRemote ID Proofing using video identification
Standards assessedEU Regulation 910/2014, ETSI TS 119 461, ETSI EN 319 401, ISO/IEC 30107-3:2023
Valid until2027-09-26
Audit typeRecertification audit
iDenfy also offers a dedicated Trust service version — identity verification services specifically designed for compliance with eIDAS Regulation (EU) 910/2014 and ETSI Standards 119 461 and 319 401.

Levels of Assurance

LevelRequirementsHow iDenfy covers it
LowReduce the risk of identity misuseDocument verification with OCR, MRZ extraction, and data consistency checks
SubstantialReduce the risk of identity misuse or alterationDocument verification + selfie biometric verification with liveness detection (detects 3D masks, deepfakes, and spoofing attempts) + manual review by in-house KYC experts
HighPrevent identity misuse or alterationDocument verification + 3D liveness with active challenge + NFC document chip reading (where available) + face matching against document photo
The required Level of Assurance depends on your use case and applicable national regulations. Financial services and trust service providers typically require Substantial or High.

How iDenfy achieves eIDAS compliance

Certified 12-step verification process

iDenfy’s verification pipeline maps directly to eIDAS and ETSI TS 119 461 requirements:
  1. Document capture — real-time capture via phone camera
  2. Image quality check — rejects blurry or overexposed images
  3. Layout check — validates fonts, signatures, and data positioning
  4. Surface analysis — detects security features and document alteration
  5. OCR data extraction — extracts data from MRZ and document front
  6. MRZ digit verification — validates machine-readable zone integrity
  7. Data consistency check — cross-references MRZ data against document front
  8. Data comparison — validates user-submitted data against extracted document data
  9. Liveness detection — anti-spoofing analysis (blinks, smiles, 3D masks, deepfakes) per ISO/IEC 30107-3:2023
  10. Face matching — compares document photo against live selfie
  11. Manual review — in-house KYC expert double-checks every verification
  12. Custom integration — additional checks based on your use case (e.g., proof of address, age verification)

Presentation attack detection (ISO/IEC 30107-3:2023)

iDenfy’s liveness detection is independently assessed against ISO/IEC 30107-3:2023 as part of the eIDAS certification. It detects:
  • Printed photo attacks
  • Screen replay attacks
  • 3D mask attacks
  • Deepfake and face-swap attacks
  • Partial face occlusion attempts

Document coverage

  • 200+ countries supported
  • 3,000+ document types recognized
  • Document types: Passports, ID cards, driving licenses, residence permits
  • 25+ languages supported
  • NFC chip reading for electronic passports and ID cards (via mobile SDK)

Configuring for eIDAS compliance

For Substantial assurance

{
  "clientId": "customer-123",
  "liveness": true,
  "documents": ["ID_CARD", "PASSPORT", "RESIDENCE_PERMIT"]
}
This configuration enables document verification with liveness detection, covering the Substantial assurance level requirements.

For High assurance (where supported)

Enable NFC document chip reading in mobile SDK configuration, require government-issued documents with electronic security features, and enable 3D liveness with active challenge. 
{
  "clientId": "customer-123",
  "liveness": true,
  "nfc": true,
  "documents": ["ID_CARD", "PASSPORT"],
  "livenessType": "active"
}
See Android Additional Features and iOS Additional Features for NFC configuration.

Integration options

iDenfy supports multiple integration methods, all compatible with eIDAS-compliant verification flows:

eIDAS 2.0 and the EU Digital Identity Wallet

The revised eIDAS regulation (eIDAS 2.0) introduces the EU Digital Identity Wallet (EUDIW). iDenfy is actively monitoring wallet developments and preparing to support wallet-based verification flows as they become available across member states.

Key changes in eIDAS 2.0

  • EU Digital Identity Wallets mandatory for all member states by 2026
  • Cross-border acceptance of digital identity credentials
  • Qualified Electronic Attestation of Attributes (QEAA) — verified attributes portable across services
  • Relying party registration — organizations consuming wallet credentials must register with national authorities

What this means for your integration

As member states roll out their wallets, iDenfy will support accepting wallet-based credentials alongside traditional document verification. This ensures a smooth transition without disrupting your existing verification flows. Contact your account manager for updates on wallet readiness.

eID provider integrations

For markets where electronic identity schemes are already established, iDenfy integrates with national eID providers to enable eIDAS-compliant verification without document scanning:
ProviderCoverageUsers
BankID SwedenSweden8.5M
BankID NorwayNorway4.5M
MitIDDenmark5.4M
FTNFinland5.5M
SPIDItaly39.4M
Smart IDBaltics3.5M
itsmeBelgium
One IDUnited Kingdom50M
BankID CzechCzech Republic4.65M
VerimiGermany
Freja eIDNordics
eParakstsLatvia
DigidentityNetherlands
CLEARNorth America30M
These eID integrations provide pre-verified identity data at Substantial or High assurance levels, depending on the national scheme’s notification status under eIDAS.

Supporting certifications

  • ISO/IEC 27001:2022 — Information security management, continuously certified since 2020
  • SOC 2 Type II — Security, availability, and confidentiality controls independently audited over a 12-month period
  • GDPR — Full compliance with EU data protection regulation; all data processed and stored in the EU

Resources

Compliance inquiries: dpo@idenfy.com Technical integration: Open a ticket