eIDAS Regulation
The eIDAS regulation (Regulation (EU) No 910/2014) creates a European legal framework for electronic identification and trust services. For enterprise document processes, the three signature levels are particularly relevant.
Three Signature Levels
Simple Electronic Signature (SES)
No special technical requirements. Examples: scanned signature, name under an email, clicking 'I agree.' Limited evidential value, but sufficient for many business processes.
Advanced Electronic Signature (AES)
Uniquely linked to the signatory. Enables identification. Created under sole control. Subsequent changes detected. Use case: contracts, approvals, internal authorization processes.
Qualified Electronic Signature (QES)
Highest signature level. Legal effect of a handwritten signature (Art. 25 Para. 2 eIDAS). Created with a qualified certificate from an approved trust service provider. Use case: where legal written form is required.
Enterprise Integration
Gosign integrates eIDAS-compliant signatures into existing document processes:
In Document Agent workflows
After automated document processing, a digital signature can be triggered as a closing step - e.g., after invoice approval or contract confirmation.
In approval processes
Multi-step approvals with digital signatures. Every signature is documented in the Decision Layer audit trail.
API integration
Connection to existing systems via REST API. The signature infrastructure is provided by the trust service provider - Gosign implements the integration.
Cooperation with ETSI-Certified Partners
Gosign is not a trust service provider. We implement eIDAS-compliant signature solutions in cooperation with providers certified under ETSI EN 319 401 and the respective specific standards.
The choice of trust service provider depends on client requirements: signature level, volume, integration requirements, existing contracts.
Compliance
EU-wide legally valid under the eIDAS regulation.
GDPR-compliant (data processing by certified trust service provider, Data Residency in the EU).
Audit trail for all signature operations.
Long-term validation (LTV) for qualified signatures.
Deep Dive in the Agent Briefing
Our article series for decision-makers securing digital processes in the enterprise.
Frequently Asked Questions about eIDAS Signatures
What is the difference between simple, advanced, and qualified signatures?
Simple signatures have no special requirements (e.g., email signature). Advanced signatures (AES) are uniquely linked to the signatory and detect subsequent changes. Qualified signatures (QES) have the legal effect of a handwritten signature.
Is Gosign a trust service provider?
No. Gosign implements eIDAS-compliant signature solutions in cooperation with ETSI-certified trust service providers. We integrate the signature into existing document processes.
Talk to us about your signature requirements.
eIDAS-compliant. Integrated into your document processes.
Book a Meeting