FAQ
You have questions, we got answers
Signatures
The Trustsigner supports three different signature types:
Simple electronic signature (SES)
- An image of your signature is added to the document
Advanced electronic signature (AES)
- An image of your signature is added to the document
- A TAN is required for authorization.
- The document gets sealed by us
- The document can be verified in the Adobe Reader
Qualified electronic signature (QES)
- An image of your signature is added to the document
- The signer get identified by a certified identity provider
- The signer authorized the signature process by a certified app
- The document gets signed by the signer via a qualified trust service provider
- The document can be verified in the Adobe Reader
There are multiple factors to consider the signature that should be used for the document:
Legal regulation
The German law has some specific rules that should be respected when choosing a signature type
- Handwritten form: the document needs to be signed with a qualified electronic signature since this is the only type that is equal to a classical analogue signature.
- No electronic form: it is not possible to sign this document with a digital signature, you need to use the classic analog way
When your document is not covered by one of the above cases you are free to choose any type of signature.
You can use our tool to check which document requires which level. Please keep in mind that we are not responsible for 100% correctness since laws can change. The best way to be sure is to ask a lawyer if you need a qualified signature or an analog signature for your document.
Security
When using a simple electronic signature, the final document is not protected by any security mechanism. This means that any stakeholder is able to manipulate the document after the signature was placed.
In case of an advanced signature or qualified signature a revision is generated after each signature step. The changes like “field was filled” or “signature was placed” by the signer are protocolled and secured with a digital signature. These signatures can be validated for example with the Adobe Reader. It is not possible for anyone to change the inputs from the signers before.
To increase the security level of the advanced electronic signature, we will use a second factor beside the email with the secret:
- A TAN is sent to the mobile number of the recipient.
- The recipient’s mail domain was verified as a business domain.
Some meta information will be saved in the resulting PDF document that allows the validator to prove the identity of the signer.
When using a qualified signature the level of assurance is higher than the advanced signature. This signature level is required to identify the signer by a certified provider, other parts in the process have to be certified as well.
Costs
Since we need external resources for providing the advanced and qualified electronic signatures the price of each is higher. Depending on your use case you should consider what level of security is required.
It is not possible to combine different signature types in the same process.
We support four different types of identification methods. Each of them will is certified by the eIDAS regulations.
Selfie-Ident
It’s like video identification, but much faster and no interaction with a human being is involved. You need a valid passport or German identity card and your mobile phone. After identification, you can use electronic signing for 2 years without repeating the process.
eID
Transfer your already certified data from your identity card to the service, no camera required. You need a German identity card or residence permit with available transport pin or already activated online ID function and a mobile phone with NFC function. After identification, you can use electronic signing for 2 years without repeating the process.
Bank
We will use your already verfied data from your bank when you opened your account there. You need a German bank account and your online banking login data. After identification, you can use electronic signing for 2 years without repeating the process.
Video-Ident
A call with another human to identity you. You need a webcam, a microphone, an up-to-date browser and a stable internet connection. After identification, you can use electronic signing for 5 years without repeating the process.
The creation of the signature can be done on mobile and desktop devices, there are multiple options:
- Draw the signature with your finger or your mouse
- Write your name and we will transform it into an image
- Upload an image of your signature
There is no requirement to use a device with a touchpad or anything else so you can perform at least one signature with each end device
When singing with simple electronic signature you need:
- A device to sign the document (smartphone, tablet, PC)
When singing with an advanced electronic signature you need:
- A smartphone, able to receive a SMS
When singing with a qualified electronic signature you need:
- the required documents to identify yourself (depends on the method)
- A smartphone to receive a SMS or the mobile id app
No, you don’t need an account to sign documents. Having an account will allow you to save the inputs of the fields to speed up your next signing process and to start signing processes.
When you use an advanced or qualified electronic signature, you can use the Adobe Reader to verify the signature.
When the document is signed via a QES, you can use the verification site of the EU.
After all signatures have been completed, all persons involved receive a confirmation via email with the completed contract attached. While the document is deleted from the TrustSigner dashboard for people with a Free license, it remains saved for a Business or Enterprise license.
The advanced and qualified signatures are included into the PDF document, an interaction with our systems for sharing or verifying the document is not necessary. Therefore there is no vendor looking after your document is finally signed.
Business license
After the registration process, every user is automatically upgraded to a free license so that they are not directly confronted with costs. Afterwards, organizations or individual users can decide whether they want to take advantage of a business license. To do this, you can enter your payment methods in the settings and select the license.
Every user can take advantage of a one-time 30-day trial version of the business license when registering an account. No payment methods need to be specified and after the trial period has expired, the user is downgraded to a free license. You will be notified that your trial is running out.
You can switch to a business license during the trial period at any time.
You are able to downgrade your account anytime to a free version. Please keep in mind that we will remove all benefits immediately after your downgraded.
You can upgrade later to business at any time again.
Organization
The organization feature allows companies to manage their employees in TrustSigner and structure them for the long term. In this way, the organization can decide which employees actually need which license and continuously correct this if necessary.
An organization can already be set up with a free license. To structure an organization, you can invite potential members to join your organization in the settings under the item “Members”. In addition, as the administrator you decide which licenses these members receive and how long they should be part of the organization.
We are supporting credit cards as a payment method for the Free and Business area. For the Enterprise area, you can also use payment by invoice in addition to the credit card.
The administrator can assign licenses and users to the organization via the settings under the category “Members”. The administrator invites the potential users by means of an invitation with the help of the e-mail address. The users then receive an invitation link in their mailbox and thus reach the TrustSigner.
Existing organization members can also be removed from the structure again. To do this, select the user in the settings under “Members” and delete their account.
Keep in mind when you remove a user from your organization, that the account and all the referenced contracts will be deleted. They will not be migrated to your account.
If a user is downgraded from a Business to a Free license, they will no longer be able to access the included features. In addition, all existing documents older than 3 months will be deleted. Furthermore, the user with the Free license can no longer view the documents in the dashboard.
You can only lead an organization or be part of an organization.
It is not possible to be in more than one organization at the same time with one account.
Pricing and Billing
The invoice for each month includes the costs for the signatures part and the business seats. The prices can be found here.
A detailed list of the events can be viewed in the billing section when you have a business license.
In the billing section you can define multiple receivers for the billing. These receivers will get the billing as a PDF by e-mail, they do not need an account here.
You can download your invoices anytime in the billing section. With a business licence you will also get more information about the billed events.
We are supporting credit cards as a payment method for the Free and Business area. For the Enterprise area, you can also use payment by invoice in addition to the credit card.
Security
All your data get the equal level of security by encryption and redundancy.
We are using Keycloak as our Identity and Access Management system. Because it uses it’s own database, we are not able to directly access it for security reasons.
Account
In addition to conventional registration, we are supporting social logins via LinedIn, Google and Microsoft for personal and company accounts.
In case of an Enterprise license, you are able to connect your identity and access management.
Our main goal is your privacy and security. Therefore we have only chosen providers with a headquarter in the EU. Otherwise there would be a conflict with the canceled privacy shield with the US resulting in a higher security risk for your personal data.
All your data get the equal level of security by encryption and redundancy.