E-signing can take place in different ways, which gives different classifications. Signing can be done by the user drawing his/her signature with the finger/mouse cursor. Such a signature may be sufficient for certain agreements. It is a type of digital signature in its simplest form, but it is not classified as an advanced electronic signature (AES / AdES). An advanced electronic signature is more secure. It ensures the identity of the signee and can check that the document has not been changed since it was signed.
There is an EU regulation, eIDAS, which describes what is required for a signature to be approved within the EU. The most important requirement in eIDAS is that an electronic ID (eID) must be used when signing. In Sweden today, BankID is the obvious electronic identification method. Through eIDAS, there is thus a common standard that applies throughout the EU.
eIDAS also describes requirements for how signatures must be processed to comply with AES in a document. One such technology is "PDF Advanced Electronic Signatures" (PAdES), which is used to apply signatures to the PDF document and to seal it. This is done through certificates issued by a trusted issuer - "Certificate Authorities" (CAs). The EU lists approved issuers in the "European Union Trusted List" (EUTL). The PAdES format allows all necessary signature information to be embedded in the PDF file.
Adobe Acrobat, which is the most common reader for PDF documents, can clearly display information about the signatures and whether the seal is correct or not when the PAdES format has been used. In this way, unallowed changes to a document can be detected.
An important detail here is that the BankID signature is not directly involved in PAdES. BankID is used to secure the identity of the person who is to sign, as part of the signing process. Another common addition is to enter personal data from BankID in the document, in predetermined fields or in the form of stamps. This is done primarily for clarity and readability, rather than for legitimacy.
This type of signature can be used when it is not a requirement that the identity of the person signing must be able to be secured. It can also be used when one of the parties does not have a Swedish BankID, e.g. in international agreements.
A simple electronic signature is performed without identification. The person who is to sign draws his/her signature (with finger, mouse cursor or similar - based on the device used) on the screen. Alternatively, this is done in combination with a name clarification (decided through settings by the user who creates the document).
This method is most similar to the traditional method of signing, i.e. by drawing the signature on a piece of paper with a pencil. The difference is that our agreements are digital and gives a higher level of security than a physical or scanned signature. The name entered by you or through the name clarification step gets included in the signature information in the completed and sealed PDF document (the document of value), while the signature is printed in a field directly in the document. This results in a so-called simple electronic signature.
This form of signature is recommended for all agreements that take place within Sweden today.
When signing, a requiredment is that Swedish BankID is used as e-identification. The person who sign simply approves their signature by identifying themselves via BankID. Information from BankID regarding the person is printed in the visible field in the document, and embedded into the signature information in the completed and sealed PDF document (document of value). This meets the requirements for an advanced electronic signature.
The eIDAS Regulation, which is already applies within the EU, states that electronic signatures can not be denied legal effect or validity due to its electronic form. E-signed agreements are in many ways much more secure than traditionally signed ones. By starting to use Formify for your agreements, you make sure that you meet the latest requirements.
A digitally signed document is only valid in its digital form. Prints/scans cannot be validated in the same way, it is the digital PDF file that contains protection against forgery and all the signature details required.