Simple Electronic Signature (SES)
“Simple” Electronic Signature is a commonly used name that groups all electronic signatures excluding advanced and qualified ones.
Read moreAdvanced Electronic Signature (AES)
It consists of a set of data in electronic form connected to an electronic document that allows the identification of the document’s signatory.
Read moreQualified Electronic Signature
Used for signing documents between legal representatives of a company and public administration or for notarial acts requiring the highest level of security.
Read moreThe difference between the three types of signatures is mainly the security level of each type and the complexity of the signatory’s identity verification system that each uses. The strength of the signature therefore lies in the degree of trust it provides regarding the identification of the signatory and the proof that the document is indeed the one signed, as well as, of course, in increasing probative validity in case of judgment.
For an informed choice of the pros and cons of each, we will explain below the difference between the various types of electronic signatures.
Often, people instinctively tend to choose the strongest type of signature. However, one must always consider the cost/benefit ratio, where cost is not only an economic issue but also one of practicality and speed of use for both the proposer (the one proposing a document for signing) and the signatory (the one who must sign the proposed document).
The proposer must therefore balance the level of signature actually needed, aware that as the required security increases, the process becomes more complex and costly, especially in terms of time, both for the proposer and the signatory.
At OTP service, we offer the first two levels of signature, the simple (FS) and the advanced (FEA).
Following is a description of the simple electronic signature and the advanced electronic signature, both of which can be purchased on this website. OTP Service is the first and only signature provider that does not require a recurring subscription but offers both a completely free service (but limited in the number of signatures) and a pay-per-use service, deducted from a prepaid credit usable both from our web interface or integrated into your own management system through our APIs.
Simple electronic signature (FS)
“Simple” Electronic Signature is a commonly used name that groups all electronic signatures excluding advanced and qualified ones. Although it is used by most digital signature providers, eIDAS does not use this term. However, to simplify the understanding of this document, we will use the term ‘simple signature’ to indicate the first of the three levels of electronic signature.
Today, the vast majority of electronic signatures on the market are so-called “simple” because they are accessible to everyone, indeed, they are easy and fast. The FS corresponds to the first level of security in terms of legal validity for a document signed remotely.
Thus, there is no established list of requirements for this type of signature. One can therefore, without any concrete process of identity verification or consent, have a document signed very quickly. In this case, however, it would be very easy for the signatory to disavow the signature. According to this definition, a scanned signature or a basic digital signature, such as the one you make on the courier’s terminal when receiving a package, for example, are so-called simple signatures.
However, precisely because for the simple electronic signature it is the judge who evaluates it on a case-by-case basis, otpservice.io has decided to strengthen it, thus acquiring greater legal value, thanks to a series of measures that we have drawn directly from the more stringent regulations of the advanced electronic signature. For example, we have added an additional authentication step, such as the two-factor authentication system through which an OTP code, sent to the signatory via SMS or email, is necessary to sign the document.
Similarly, although it is not mandatory to have a control tracking with simple electronic signatures, we have enhanced all the information that is collected during the signing process.
In the event log, the following are recorded: signatory’s email, their phone number, IP address of the computer used to sign the document, etc. The purpose of this log is to give lawyers the ability to easily trace the different stages of a transaction step by step, thus providing greater credibility in case of a dispute over the document signature.
All this additional information is displayed in the signature certificate that otpservice.io automatically adds at the end of the document after signing. A copy of this document is sent to the signatory by otpservice.io and is always available to the proposer through the convenient control panel reserved for them.
The simple electronic signature (SES), despite not meeting the requirements of qualified electronic signatures, is still recognized by eIDAS as a fully admissible signature in legal proceedings.
Article 20, paragraph 1-bis of the CAD (Digital Administration Code) establishes that the suitability of the electronic document to satisfy the requirement of written form and its probative value are freely assessable in court, in relation to the security, integrity, and immutability characteristics of the adopted electronic signature solution.
Advanced Electronic Signature (AES)
With reference to the DPCM of 22/02/2013 article 55 and subsequent ones, the Advanced Electronic Signature (AES) consists of a set of electronic data connected to an electronic document that allows the identification of the document’s signatory and guarantees the unique connection to the signatory.
They must be created with means over which the signatory can maintain exclusive control, and the immutability of the document subject to signature must be guaranteed.
The AES constitutes a stronger signature compared to the simple electronic signature because:
The AES has the same legal value as a document signed in person between a proposer and a signatory.
The AES process managed by OTP service is secure because:
Qualified Electronic Signature
OTP service does not offer Qualified Signature (or Digital Signature) as it is typically used for signing documents between legal representatives of a company and public administration or for notarial deeds requiring the highest level of security. This type of signature usually requires hardware (USB token) that contains a certificate valid only for a certain period of time and issued by chambers of commerce or other accredited entities after an in-person recognition process. Resident software on the USB drive allows for applying a signature and timestamp directly to the document. Viewing the signed file requires specific software. If both the signatory and the proposer need to sign, both parties must have their own USB token and respective signature password (which are strictly personal and should never be delegated to third parties, for example: within a company).
The EU Regulation No. 910/2014 of the European Parliament and of the Council of 23 July 2014, known by the acronym eIDAS (Electronic IDentification Authentication and Signature), has established rules and procedures for electronic signatures.
At the European level, the electronic signature system can be traced back to Directive 1999/93/EC, a Directive of the European Parliament and of the Council on a Community framework for electronic signatures. Published in the Official Journal of the European Communities on 19 January 2000 L. 13, it came into force on 19 January 2000. Article 5 of the directive is of particular importance, as it provides for obligations of Member States relating both to ‘advanced electronic signatures based on a qualified certificate and created by a secure signature creation device’ and to other signature systems (which are now generally called weak or simple). Please refer to the entry on Teleadministration. Italy complied with the directive in 2002 (Legislative Decree No. 10 of 23 January 2002).
Contact us to receive complete documentation and try our service.
Enter your details and we will contact you to arrange an operational demo on how the service works.