GREECE Law and Practice Contributed by: Nikos Nikolinakos, Dina Kouvelou and Alexis Spyropoulos, Nikolinakos & Partners Law Firm
8. Trust Services and Digital Entities 8.1 Trust Services and Electronic Signatures/Digital Identity Schemes The legal framework in Greece consists mainly of Regulation (EU) 910/2014 (eIDAS Regulation), Law 4727/2020 and the EETT Regulation on the provision of Trust Services, the latter of which complement the eIDAS Regulation. The eIDAS Regulation lays down the conditions under which member states may recognise elec - tronic identification means falling under a noti - fied electronic identification scheme of another member state. It also lays down rules for trust services, which are the electronic services nor - mally provided for remuneration consisting of: • the creation, verification and validation of electronic signatures, seals or time stamps, electronic registered delivery services and certificates related to those services; • the creation, verification and validation of certificates for website authentication; or • the preservation of electronic signatures, seals or certificates related to those services. Qualified trust services may be provided by qualified or non-qualified “trust service provid - ers”. In Greece, the supervisory body granting the qualified status to providers is EETT, which also maintains an electronic record of trust ser - vice providers established in Greece. Trust service providers must meet specific secu - rity requirements, and must take the appropriate technical and organisational measures for the security of their trust services and inform EETT of any breach of security or loss of integrity that has a significant impact, within 24 hours of the incident.
The requested electronic communications net - work provider shall examine the request and either reject the request, in which case it shall inform the requested provider in writing, stating the reasons for the refusal, or accept the request, in which case it shall inform the requesting pro - vider in writing and submit the relevant requests for interconnection. If no agreement is reached between the parties, the parties may appeal to EETT and request the resolution of the dispute by EETT issuing a binding decision. TMT companies entering into interconnection agreements in Greece must take into account various legal, regulatory, technical and commer - cial issues to ensure compliance and effective co-operation. Companies must ensure that inter - connection agreements comply with the Regula - tions and Guidelines of EETT, and with the obli - gations and conditions that EETT may impose on a case-by-case basis. The parties undertake to ensure the confidentiality of all information exchanged or brought to their knowledge before and during the negotiations for the conclusion of an interconnection agreement, during the execution of such agreement, and for five years after its termination. The network infrastructures of the parties involved must be compatible and support the uninterrupted flow of data. The agreement must include mechanisms to protect against cyber threats or other security problems, and mechanisms to address issues relating to the termination of the agreement and the settle - ment of disputes between the parties.
113 CHAMBERS.COM
Powered by FlippingBook