Does DocuSign issue a qualified certificate to a signer that does not yet have a qualified certificate, compliant under the eIDAS for a QES?
A qualified electronic signature (QES) under the EU eIDAS regulation requires a qualified certificate issued by a qualified trust service provider (QTPS). When I ask a client to sign a contract with a QES via DocuSign, the client may not yet have a certificate (let alone a qualified certificate). In the signing process, the DocuSign system will verify the client’s identification using the client's mobile phone whereby (i) the client specifies the government photo ID, (ii) the client films his/her/their face, (iii) the client films the photo on the ID, (iv) the client will impute an SMS code that DocuSign will send to the used mobile phone and (v) a third party identity veriification partner (UBBLE/Checkout.com) will compare the filmed face with the photo on the ID. At least, this was the process when I tested DocuSign in a pilot session.
When the identity verification is successful, will DocuSign as a QTPS issue a qualified certificate to the signer, so that the signature will be a QES compliant with eIDAS? Will the signer store this certificate for multiple QESs? How long will the certificate remain available in the signer's DocuSign system and will this be possible to sign any envelop the signer wants?
Hope these questions can be answered. If my description of the process is incomplete or inaccurate, I would greatly appreciate feedback! Many thanks in advance.