Skip to content
menu-toggle
menu-close

Addo Sign / twoday and eIDAS: Secure digital signatures in compliance with EU legislation

Digital transactions and remote collaboration have become a regular part of daily operations for both private and public organizations. To ensure that these interactions are secure and legally compliant, the eIDAS RegulationElectronic Identification, Authentication and Trust Services – plays a crucial role. It establishes the legal framework for electronic signatures in the EU and ensures that digital signatures carry the same legal weight as handwritten ones.

eIDAS was adopted by the European Parliament and Council as a common standard for electronic identification and trust services across EU member states. This means that an electronic signature valid in one EU country must be recognized in all other member states.

In 2024, the regulation was expanded with eIDAS 2.0, which introduces the European Digital Identity – the European Digital Identity Wallet (EUDI Wallet). This digital wallet aims to make it easy for citizens and businesses to identify themselves and securely share documentation across borders. Addo Sign closely monitors developments and continuously ensures that the solution complies with both current and upcoming requirements under the eIDAS regulation.

 

twoday-sign-1200x1200-01

 

Three types of electronic signatures under eIDAS

The eIDAS Regulation defines three different types of electronic signatures, each with a different level of security and legal validity. The choice of signature type depends on the nature of the document, requirements for identity verification, and the need for evidence in case of a dispute.


Electronic Signatures (ES)

An Electronic Signature – also known as a Basic Electronic Signature – refers to any electronic method by which a person indicates their intent to sign a document. For example:

  • Inserting an image of a signature into a document
  • Typing a name using a mouse or keyboard
  • Ticking a checkbox in a digital form

There are no requirements for identity verification or advanced security measures. Therefore, this type of signature provides no guarantee of the signer's identity or the integrity of the document. The document can be altered afterward without necessarily being detected.

When is ES used?
For informal agreements or internal documents where the burden of proof is low. ES is not recommended for sensitive or legally binding agreements.


Advanced Electronic Signatures (AES)

An Advanced Electronic Signature offers a higher level of security and meets specific requirements under the eIDAS Regulation. An AES:

  • Is uniquely linked to the signer
  • Validates the signer's identity
  • Ensures the document has not been modified after signing

Advanced signatures use approved ETSI standards, recommended by the European Commission:

  • PAdES – for PDF documents
  • XAdES – for XML-based data
  • CAdES – for emails and binary files

In Addo Sign, secure eIDs such as Danish MitID and MitID Business, BankID Sweden, BankID Norway, Freja eID, and the Finnish Trust Network are used to validate the identity of the signer.

When is AES used?
For legally relevant documents, contracts, consent declarations, and sensitive information where evidentiary value is important – but where a qualified signature is not required.


Qualified Electronic Signatures (QES)

A Qualified Electronic Signature represents the highest level of digital signing under eIDAS and is the only signature type that is automatically equivalent to a handwritten signature across the EU and EEA – without requiring additional proof.

A QES is an advanced signature that:

  • Is based on a qualified certificate issued by an approved Qualified Trust Service Provider (QTSP)
  • Is created using Qualified Signature Creation Devices (QSCD), such as hardware tokens, secure mobile apps, or cloud-based signing with strong two-factor authentication

When is QES used?
For documents with high legal value or statutory requirements, such as:

  • Official declarations and land registrations
  • Contracts with high evidentiary demands
  • Official records and notarized statements

Addo Sign complies with eIDAS and supports all three signature levels

With Addo Sign, you can create both advanced and qualified electronic signatures, depending on the trust service and identification level used. Addo Sign collaborates with InfoCert, an EU-approved QTSP that meets the requirements of the eIDAS Regulation.

By combining modern technology, strong encryption, and identity verification, Addo Sign enables both businesses and public authorities to manage digital signatures securely, efficiently, and in full legal compliance – whether for internal documents or business-critical contracts.

Read more about the eIDAS rules here: https://www.eid.as/