Whether you use a click signature or a graphic signature, all digital signatures captured through ValidSign are supported by:
Certificate included in the document. This certificate ensures integrity by providing an automatic check every time the signed document is opened to validate that the signatures are still valid and that the document has been changed after signing.
Identity data included in the document. Think for example of an IP address and e-mail address.
The data recorded in the evidence summary. It contains exactly the actions that each signer has performed since the signing process was started.
With the introduction of the eIDAS regulation in the EU, the use of digital signatures has been definitively established in European and Dutch law. The eIDAS regulation lists a number of requirements that the electronic signature must meet. These requirements ensure that the electronic signature always has the same legal consequences as a handwritten "wet" signature:
"It is uniquely linked to the signatory";
"It makes it possible to identify the signatory";
"It is created using electronic signature creation data that the signatory, with a high level of confidence, can use under his sole control, and";
"It is linked to the data signed with it in such a way that any subsequent change in the data can be detected."
The identity of the signer and the integrity of the document are therefore important components in the digital signing process. It must be easy to validate. If all the above criteria are not met, the electronic signature is not legally valid. For example, a picture of a scanned signature: this signature only meets the first two criteria. It is easy to change this signature afterwards. This is not possible with the advanced digital signature.
The integrity of the document is guaranteed by the certificate that ValidSign adds to it once the document is signed. The identity of the signatory can be guaranteed to varying degrees. ValidSign gives its customers every opportunity to set up the identification and authorization process of both internal users and other parties themselves. This gives the customer extensive options for checking the reliability of the electronic signature to be used.
It is more likely that the person who signed is actually that person when SMS authentication is applied than when only email authentication is applied. For example, a signer may have accidentally shared the link to the transaction, causing someone to sign other than the intended signer (but on behalf of the intended signer). A large part of that uncertainty is removed by means of the second factor authentication (SMS or Question & Answer).
The highest level of identification is achieved with qualified signing and, according to the eIDAS, is by definition equal to the 'wet' signature.