Download our factsheet "epSOS - Technical Aspects"! To access other epSOS documents and print materials, please visit the Download Area.

Security Aspects

From a European perspective, security requirements vary considerably in Member States. However, different levels of security in national legislations must not impose an obstacle to EU exchange of data (Art.1 §2 Data Protection Directive). What should be then pursued is the specification of a realistic appropriate security level, which can be gradually enhanced, that will allow MS to implement basic cross-border services and continue to optimize, align and gradually improve them. epSOS, addresses this challenge by pursuing Agreements on appropriate security measures for protection of personal data, integrity and authorship of documents, access control and role mandate management, mutually accepted by involved piloting nations.

The epSOS Security Policy formalizes all security aspects necessary to provide a secure operational environment for epSOS. The Security Policy also specifies the obligations of service providers and users and must be approved, implemented and periodically audited by all epSOS partners. The epSOS Security Policy is part of the FWA. An agreed EU level security policy for cross border data exchange should also be translated into behavioural change.