Luxembourg

Rules on (i) trust service providers resulting from the Regulation (EU) No 910/2014 of 23 July 2014 on electronic identification and trust services for electronic transactions in the internal market and repealing Directive 1999/93/EC, as well as on (ii) providers of dematerialization or conservation services resulting from the law of 25 July 2015 on electronic archiving have had such an impact.
Both laws and their implementing acts establish technical procedures for service providers to be recognized respectively as qualified trust service providers and as qualified providers of dematerialization or conservation services.
This is important as said qualified providers may provide services with a high level of security.
The above mentioned European Regulation also set specific requirements for qualified electronic signatures, qualified electronic seals as well as qualified electronic registered delivery services.
Moreover, the above mentioned regulation also specify different levels of assurance (low, substantial and high) for electronic identification. Electronic identifications with substantial or high level of assurance may automatically benefit from the mutual recognition in all EU Member States. Requirements to meet the different levels of assurance are defined in implementing acts of the Commission.
All such measures certainly did have an impact on standards for IT security.