Skip to main content

Does DocuSign issue a qualified certificate to a signer that does not yet have a qualified certificate, compliant under the eIDAS for a QES?

A qualified electronic signature (QES) under the EU eIDAS regulation requires a qualified certificate issued by a qualified trust service provider (QTPS). When I ask a client to sign a contract with a QES via DocuSign, the client may not yet have a certificate (let alone a qualified certificate). In the signing process, the DocuSign system will verify the client’s identification using the client's mobile phone whereby (i) the client specifies the government photo ID, (ii) the client films his/her/their face, (iii) the client films the photo on the ID, (iv) the client will impute an SMS code that DocuSign will send to the used mobile phone and (v) a third party identity veriification partner (UBBLE/Checkout.com) will compare the filmed face with the photo on the ID. At least, this was the process when I tested DocuSign in a pilot session.

When the identity verification is successful, will DocuSign as a QTPS issue a qualified certificate to the signer, so that the signature will be a QES compliant with eIDAS? Will the signer store this certificate for multiple QESs? How long will the certificate remain available in the signer's DocuSign system and will this be possible to sign any envelop the signer wants? 

Hope these questions can be answered. If my description of the process is incomplete or inaccurate, I would greatly appreciate feedback! Many thanks in advance. 

Hello, ​@Herman Lohman 

 

Check these informations:

 

  1. Types of Digital Signature: AES, QES, SES, explained
    https://www.docusign.com/en-gb/blog/types-digital-signature-aes-qes-ses-explained#faqs
  1. A recorded webinar from Docussign University
    https://dsucustomers.docusign.com/support-compliance-using-docusign-advanced-and-qualified-esignature-european-union-recorded
  1. Whitepaper about Digital Signatures
    https://www.docusign.com/en-gb/sites/default/files/implementing_e-signatures_and_digital_signatures.pdf

I hope these articles helps you, if so, I’d like your Like here, thank you.

 

Best,

Alexandre


When the identity verification is successful, will DocuSign as a QTPS issue a qualified certificate to the signer, so that the signature will be a QES compliant with eIDAS?

How has Docusign prepared for the introduction of eIDAS?

In November 2015, Docusign acquired the electronic signature business of OpenTrust (now known as IDnomic). This gave us the ability to provide all forms of electronic signature defined under eIDAS, including advanced and qualified, to customers transacting business in the EU.

Docusign’s Standards-Based Signatures’technology is also underpinned by eIDAS-recommended technical standards for electronic signature, including digital technology standards (X.509 PKI, PAdES, XAdES, and CAdES and others from ETSI, CEN and ANSI).

Docusign is a Trust Service Provider on the EU Trust List. Docusign accepts qualified certificates issued by Trust Service Providers on the EU Trust List.

 

Will the signer store this certificate for multiple QESs?

Yes, you can create a Identity wallet for QES signing later.

https://support.docusign.com/s/document-item?language=en_US&bundleId=ced1643229641057&topicId=pje1701978970294.html&_LANG=enus

Identity Wallet

ID Verification for EU Qualified provides an Identity Wallet that stores recipients’ verification results. Using their wallet, recipients don’t need to submit their ID every time they have to verify their identity. Instead, they just need to log in to their wallet. ID Verification compares the verified identity from the wallet with the name in the envelope. If both data match, recipients can access the envelope. Frequent signers should consider creating an Identity Wallet to save time. 

Recipients who do not create an identity wallet expose themselves to the following consequences: 

  • They must verify their identity for every new envelope they must access. .
  • They must sign documents within 24 hours after they receive the confirmation email. If they exceed this period, they must verify their identity again to open the envelope.

https://support.docusign.com/s/document-item?language=en_US&bundleId=ced1643229641057&topicId=vke1672930715877.html&_LANG=enus

 

How long will the certificate remain available in the signer's DocuSign system and will this be possible to sign any envelop the signer wants? 

I not find how long will it expire, the document only told: If your wallet data has expired, ID Verification prompts you to verify your identity again the next time a sender requests ID verification.

https://support.docusign.com/s/document-item?language=en_US&bundleId=ced1643229641057&topicId=dam1701770990519.html&_LANG=enus

 

FreeLink/甫连信息

🌍 Docusign Partner | Partner Profile

🏆 Docusign 2024 APAC Reseller Growth Partner of the Year

🌟 The only Docusign Partner globally certified as both a Certified eSignature Administrator and eSignature Technical Consultant.

📊 Docusign Community Leaderboard Top 5 contributor.

🚀 Expertise in Docusign integrations with on-premises systems for leading enterprises across various industries.

 


Reply