The digital euro advances in Brussels with its usual friendly language: sovereignty, innovation, resilience, privacy by design, and freedom of choice. The European Parliament’s Committee on Economic and Monetary Affairs has already approved its position on the future digital currency of the European Central Bank with 43 votes in favor, 14 against, and one abstention. Negotiations with the Council are still pending, and there is no final launch, but the project has crossed an important political threshold.
The question citizens, tech companies, and security officials should be asking isn’t whether Europe needs better digital payments. It does. The real question is whether a central bank digital currency (CBDC) is the right way to achieve that. Because the digital euro is not just another payment method. It’s a new layer of monetary infrastructure, with identity, limits, intermediaries, technical rules, and supervisory capacity. And this, although presented as progress, could be a step backwards in terms of privacy and economic freedom.
Cash has many logistical disadvantages, but it preserves a virtue that no institutional wallet truly replicates: it allows payments without integration into a permissioned architecture. It doesn’t require a account, a mobile device, a battery, a connection, a provider, an API, or inherent traceability. The digital euro, even with an offline mode, is born within a system designed to be managed, limited, and audited.
From Paying to Interacting with a Monetary API
From a technological perspective, the change is enormous. Cash is a physical instrument. The digital euro will be a distributed digital infrastructure managed by banks, electronic money institutions, post offices, and other regulated providers. Online payments will operate through an account-based model. Offline payments will function via local devices such as mobile phones or cards, making them the closest to physical money.
This design may sound reasonable. But when money depends on devices, accounts, limits, and providers, citizens lose a direct and simple relationship with payments. Each transaction enters a technical system with access rules, availability checks, verification processes, recovery procedures, risks, and compliance measures.
| Element | Cash | Digital Euro |
|---|---|---|
| Nature | Physical object | Digital record issued by the ECB |
| Required intermediary | None for in-person payment | Yes for distribution and online payments |
| Technical identity | Not by default | Necessary in online environment |
| Holding limit | No general technical cap | Yes, there will be a maximum |
| Offline use | Yes | Yes, but device-dependent |
| Privacy | High by physical design | Promised through architecture and standards |
| Main risk | Physical loss or theft | Loss, blocking, technical failure, or regulatory change |
| Future evolution | Difficult to modify | Can be changed via software, norm, or policy |
Here’s the core issue. The digital euro doesn’t just digitize money; it shifts its control surface. It turns it into regulated software, and everything that becomes software can be updated, restricted, parameterized, monitored, or conditioned in the future.
European institutions assure that the digital euro will not be programmable money. That guarantee is important but insufficient unless it is strictly safeguarded. Technological history shows that many infrastructures start with a limited scope and often expand their functions when new crises emerge, political objectives shift, or regulatory pressures increase.
Privacy by Design Is Not the Same as Freedom
The European Parliament talks about privacy by design and by default. It also mentions technologies like zero-knowledge proofs, which would allow verifying transactions without exposing personal data beyond what is necessary. The ECB states it would have no access to identifiable personal data and that the digital euro would complement, not replace, cash.
All this sounds good in an institutional document. But real privacy isn’t measured by promises; it’s determined by architecture, incentives, and the ability to modify systems. In online payments, payment service providers will continue to have obligations related to identification, anti-money laundering, fraud prevention, and compliance. In other words, we aren’t talking about anonymity equivalent to cash.
Offline mode may offer more privacy but will also have limits. It will depend on a local device. If that device is lost with offline balance, the money could be irretrievable, just like cash. The difference is that cash does not require certified hardware or technical infrastructure to function.
| Promise | Technological risk |
| Default privacy | Depends on implementation, audits, and legal limits |
| The ECB won’t see personal identity | Other intermediaries might process user data |
| Offline mode similar to cash | Will have technical limits and depend on the device |
| Will not replace cash | Could displace it if banks, merchants, and authorities push for digital payments |
| Will not be programmable | The infrastructure could enable digital rules if laws change |
The argument around zero-knowledge proofs warrants special mention. It’s a powerful and useful technology, but not magic. An architecture employing advanced cryptography can still have weaknesses in onboarding, account recovery, provider trust, metadata, balance limits, interfaces, logs, anti-fraud analysis, or regulatory compliance. Privacy isn’t solely a cryptographic issue; it depends on limiting power, data, and potential uses.
Holding Limits Reveal the System’s True Nature
One of the clearest design elements is the holding limit. People will not be able to accumulate an unlimited amount of digital euros. The cap aims to ensure financial stability, preventing massive withdrawals from bank deposits into direct central bank money. Companies, on the other hand, won’t be able to keep digital euros as a regular balance, except for incoming payments within a maximum period of 24 hours.
The economic rationale makes sense from a banking system perspective. But for citizens, it reveals something fundamental: the digital euro is not designed as a free form of holding public money but as a payment instrument within a defined perimeter.
Cash does not operate this way. No one imposes from the design of the banknote how much physical money a person can store at home. There may be legal limits on certain payments, fiscal controls, and anti-money laundering obligations, but the note itself does not incorporate a technical balance restriction. The digital euro, however, is designed with that logic embedded — it starts with built-in system limits.
This detail warrants greater concern than it might appear. When money includes technical limits from the outset, the debate shifts from purely monetary to political and technological. Who sets the limit? When is it reviewed? Based on what criteria? Could it change during a crisis? Might it differ by country, profile, age, or economic context in the future?
European Sovereignty Doesn’t Always Mean Citizen Sovereignty
A key argument for the digital euro is that Europe depends too much on private, non-European providers for digital payments. Companies like Visa, Mastercard, big tech platforms, wallets, and international networks wield significant influence. In a geopolitical tense environment, with stablecoins and increasing digitalization, this concern is legitimate.
But there’s a dangerous confusion: gaining institutional sovereignty doesn’t automatically mean increasing individual freedom. The digital euro could reduce external dependency but simultaneously increase citizens’ dependence on a centralized, regulated public infrastructure.
| European objective | Critical question |
| Reduce dependence on non-European providers | Does this come at the cost of consolidating power within a centralized public infrastructure? |
| Create a pan-European alternative | Will it be a genuine choice or just the default option? |
| Enhance payment resilience | What happens if devices, providers, or identification mechanisms fail? |
| Protect privacy | What data will remain out of reach of banks and authorities? |
| Maintain cash usage | Will there be an effective obligation to accept physical cash for decades? |
Europe should promote its own, interoperable, competitive digital payment solutions. It should strengthen instant transfers, user-controlled digital identity, open standards, banking competition, European private solutions, and real cash protection. The questionable part is the reliance on a retail CBDC—introducing a new layer of control over everyday money.
The sovereignty that truly matters isn’t just that of Brussels versus Washington or Silicon Valley. It’s the sovereignty of the citizen over the payment infrastructure that can condition their ability to pay.
Cash as a Technology of Resistance
In technology, resilience is often discussed, but few recognize that cash is one of the most resilient technologies out there. It operates without electricity, internet, providers, subscriptions, software updates, or terms and conditions. It has costs, yes, and can be misused, but its simplicity makes it a practical tool for freedom.
When digital payment systems fail, cash persists. When someone has no mobile, cash is still available. When someone wants to pay without leaving a commercial trace, cash remains an option. When elderly people do not master banking apps, cash still exists. During blackouts, network outages, or provider failures, cash continues to work.
The digital euro promises offline mode, but it won’t be equivalent to cash. It will depend on devices, limits, and rules. It may be useful, but it does not replace the social robustness of physical money. That’s why any deployment of the digital euro should be accompanied by a strong defense of cash, not an ambiguous commitment.
The European Parliament has also moved to strengthen the legal status of banknotes and coins, to prevent widespread rejection of cash, and to require member states to ensure accessibility. That’s a positive step. The question is whether it will suffice when banks, merchants, and administrations push toward digital payments over cost, convenience, or operational control.
The Risk Is Not in Launch, but in Normalization
The digital euro won’t arrive tomorrow. The ECB aims for a possible initial issuance in 2029 if legislation passes in 2026. Before that, there will be a 12-month pilot from mid-2027. This timeline allows for adjustments in design, audits, and legal limits.
But the danger of these infrastructures isn’t typically evident at first. It appears once they become normalized. First, they are presented as options. Then, integrated into banks, merchants, and administrations. Later, they are recommended. Over time, they may become required for public aid, government payments, digital services, or bureaucratic processes. Once widespread, changing the rules becomes much easier than dismantling the infrastructure.
No need to assume ill intent to be concerned. It’s enough to understand how digital systems evolve. A digital money infrastructure can be used with guarantees today and with fewer tomorrow. It can start with strong privacy and end with more traceability under antifraud pressures. It can prohibit programmability initially and enable conditional uses later. It can coexist with cash while it’s still available, becoming a de facto substitute as physical money deteriorates.
Minimal Guarantees Europe Should Demand
If the digital euro proceeds, guarantees shouldn’t remain just statements. They should be embedded in law, in the technical design, and in public audits. The first must be the protection of cash as a legal right for decades, with broad acceptance, sufficient ATMs, and sanctions against unjustified refusals.
The second should be a clear ban on programmable money for citizen use. There should be no expirations, spending restrictions by category, preemptive freezes without judicial oversight, or user segmentation based on social or political profile. The third guarantee is strict minimization of data collection, with independent audits and transparency about what each actor can see.
The fourth should be interoperability and auditable code in critical components. If the digital euro is proposed as a public infrastructure, it cannot be a black box understood only by the ECB, selected providers, and consulting firms. The fifth is democratic governance: any significant change in limits, privacy, access, or data should undergo parliamentary review, not be decided solely by technical or administrative means.
Technology Doesn’t Always Expand Rights
The digital euro is marketed as a modernization. But digitizing a fundamental social function doesn’t always expand rights. Often, it reduces them when it replaces free technology with permissioned infrastructure. And money is too important to treat like just another banking app.
Europe is right to seek independence from external payment providers. It’s right to worry about private stablecoins and large tech platforms. But responding to these risks with a digital currency that might weaken practical anonymity, introduce technical limits, and normalize a state-controlled monetary layer should be resisted.
The digital euro can be useful for certain cases. It can improve pan-European payments and provide a public alternative. But if the cost is bringing everyday money closer to a surveillable, configurable, and limited infrastructure, technological progress becomes a step backward for citizens.
Freedom is lost not only when someone bans it but also when a simple, anonymous tool is replaced by a more convenient yet more controllable one. In payments, this difference matters. And the digital euro warrants a debate before it’s too late.
Frequently Asked Questions
Is the digital euro officially approved?
No. The European Parliament’s Committee on Economic and Monetary Affairs has approved its position, but the final text must be negotiated with the Council before it becomes law.
How could it affect privacy?
Because online payments would operate within a regulated digital infrastructure with identifiable user data and compliance obligations. The promise of privacy is made, but it doesn’t equal the practical anonymity of cash.
Will the digital euro replace physical cash?
Officially, no. Still, critics fear that cash could diminish in use if banks, merchants, or governments push toward digital payments.
What is the biggest risk of the digital euro?
That an infrastructure presented as convenient and sovereign ends up normalizing technical limits, traceability, and modifiable rules over citizens’ everyday money.
