EES | News

EU Border Security Under Investigation After Russian Software Purchase Raises Alarm

by
A young IT professional wearing glasses and a lanyard works on a laptop in a data center, surrounded by server racks with blue cables.
Image courtesy of SeventyFour via iStock

European prosecutors are investigating the role of Atos’ Moscow office in buying software for the European Union’s (EU) new Entry/Exit System (EES). This system records biometric data from non-EU travelers.

Officials are now closely examining the project after reports linked Atos’ Russian branch to key software purchases.

Security concerns over Russian involvement

The role of Russian staff in this EU project has raised serious concerns.

Leaked documents show that Atos’ Moscow office operated with a license from Russia’s Federal Security Service (FSB), which may have given Russian authorities access to the company’s work.

EU officials fear that this could threaten security since the EES stores a large database of personal and biometric data. The European Public Prosecutor’s Office (EPPO) is investigating, but no formal charges have been filed.

EU scrambles to address possible risks

EU-Lisa, the agency in charge of the EES, says it has no direct contracts with Atos Russia and has found no security breaches. 

However, Olaf, the EU’s anti-fraud watchdog, previously investigated and found that EU-Lisa’s security measures were not strong enough.

Even so, EU-Lisa continues to review security, and the European Commission has promised a full audit before the EES launches.

Automated biometric security gates at an airport terminal with facial recognition screens and red "X" indicators on the barriers.
Image courtesy of Brostock via iStock

Repeated delays add to controversy

The EES has been delayed several times and is now set to launch in 2025. Many officials blame technical issues and poor management by Atos, IBM Belgium, and Leonardo.

The involvement of Atos’ Russian office has raised more concerns about whether the system can be secured before it starts. Some countries, including France and Germany, doubt it will be ready on time.

Stricter travel procedures on the horizon

The investigation could lead to stricter security checks for people entering the EU, affecting short-term visitors, long-term migrants, and those applying for residency.

The EES was meant to automate border control by recording biometric and personal data, but security concerns and delays could push back its launch.

In the meantime, travelers may face longer wait times at EU borders as officials increase manual checks to address security gaps. This could especially impact non-EU nationals who use visa-free travel or Schengen visas for short stays.

For long-term visitors and migrants, EES delays could complicate residency applications. 

The system was supposed to track overstayers more efficiently, but without it, governments may turn to other monitoring methods, which could lead to stricter visa renewal processes.

The controversy also raises concerns about the European Travel Information and Authorization System (ETIAS), set to launch six months after the EES.

The ETIAS will require travelers from visa-exempt countries to get pre-authorization before entering the EU. 

If data security issues remain unresolved, officials might introduce extra safeguards, slowing the system’s rollout or adding new requirements for applicants.

Airline staff at an airport check-in counter assisting passengers, with a flight information board in the background showing delays and cancellations.
Image courtesy of EvgeniyShkolenko via iStock

Policy overhaul likely

The discovery of Russian involvement in EES software procurement may lead EU countries to rethink their approach to immigration and border security.

Member states already skeptical of large-scale biometric tracking might push for national systems instead of relying on centralized EU databases.

France and Germany, which have raised concerns about EES readiness, may call for stricter oversight of foreign IT contractors working on EU security projects.

This could lead to new rules requiring thorough background checks on software providers before they handle border control infrastructure.

Some countries may also push for stricter screening of visa applicants from nations seen as security risks. 

If trust in EES security weakens, policymakers might add extra identity verification steps, making visa applications more time-consuming for non-EU nationals.

The EU remains committed to launching the EES and ETIAS, but the investigation exposes risks in relying on external contractors.

Without stronger safeguards, the controversy could spark debates on whether border security should be managed by individual countries rather than through EU-wide systems.

Next steps for investigation

Atos claimed that it cut ties with its Russian operations in September 2022, but questions remain about how its Moscow office obtained software as late as 2021.

With the EPPO investigation ongoing, EU leaders face pressure to secure the EES before its launch. As Europe strengthens border controls, the probe highlights the challenge of protecting critical infrastructure from external threats.

The EU must now decide how to proceed with its biometric border system while addressing security gaps revealed by the investigation. 

The outcome could shape Europe’s approach to digital security and foreign involvement in sensitive projects for years to come.

Leave a Reply

Your email address will not be published. Required fields are marked *