As the European Union intensifies its digital transformation, all nine EU candidate countries are under pressure to modernise their technology laws, cybersecurity frameworks, and digital infrastructure to meet the bloc’s stringent accession criteria.
According to the European Commission, aspiring members must align with the acquis communautaire—the EU’s comprehensive body of laws and regulations—which includes standards for digital governance, cybersecurity, and emerging technologies such as artificial intelligence (AI).
Ahead of the Euronews EU Enlargement Summit, several candidate countries have shown progress in areas like digital identity and cybersecurity, though most still face significant challenges.
Digital Wallets: Building Europe’s Online ID Future
In 2024, the EU urged member states to roll out digital wallets within two years, enabling citizens to access digital IDs, sign documents, and securely share personal data in line with the General Data Protection Regulation (GDPR).
Among candidate countries, Bosnia and Herzegovina, North Macedonia, and Moldova have begun pilot projects, while Ukraine, Serbia, and Albania are expected to launch national digital wallets by 2026.
Moldova is developing its wallet through the EU-funded “We Build Consortium,” integrating it into its EVO e-government platform, complete with electronic signature functionality. North Macedonia’s “m.Uslugi” app, due by the end of 2024, will offer citizens digital document storage, reminders, and online inboxes.
In Albania, Prime Minister Edi Rama announced that a state-owned company, Identitek, is building the country’s digital ID system, allowing citizens to use government-issued credentials on phones and computers as multifunctional digital wallets.
Cybersecurity: Aligning With EU Standards
The EU’s Network and Information Systems (NIS) directives require countries to adopt national cybersecurity strategies and coordinate protections across key sectors like healthcare, energy, transport, and finance.
Ukraine has emerged as a frontrunner, partnering with the EU Agency for Cybersecurity (ENISA) to bolster cyber defences and workforce training. The EU also helped establish a cyber lab for the Ukrainian Armed Forces and launched the Tallinn Mechanism to strengthen cyber resilience.
Elsewhere, Albania, Montenegro, Turkey, Georgia, Moldova, and North Macedonia have all introduced cybersecurity strategies that partly align with EU standards. Moldova is set to join ENISA’s cybersecurity reserve, while Montenegro established a regional Cybersecurity Capacity Centre in 2022 with French and Slovenian support.
However, Turkey’s strategy has drawn criticism from opposition figures who argue it could enable mass surveillance and restrict free speech. Serbia, meanwhile, is working with EU experts on a cybercrime framework to better handle electronic evidence and high-tech offences.
Artificial Intelligence: Early Steps Toward Regulation
Under the EU’s new AI Act, candidate countries must adopt risk-based regulations ensuring transparency, safety, and accountability in AI systems, particularly in sensitive sectors such as health, education, and policing.
Albania, Moldova, Serbia, and Ukraine have adopted AI strategies but have yet to enact legislation. Albania’s approach includes using AI in public procurement and tax enforcement, overseen by what it calls the world’s first “AI minister,” named Diella — a digital system tasked with managing public tenders.
Critics, however, have warned that such models could replicate algorithmic bias. Serbia has also established an AI ethics council and is drafting national legislation to align with EU rules.
While candidate countries have made visible strides, analysts say bridging the digital divide with the EU will require sustained reforms, robust data protection laws, and significant investment in digital skills — all prerequisites for eventual EU membership.
