Security: paramount for us
and our customers

Security: paramount for us and our customers

inSign, the legally secure electronic signature

inSign, the legally secure
electronic signature

The digital signature inSign is a legally compliant, verifiable signature. Besides the image of the signature, biometric signature data is also captured.

Writing speed, direction, and breaks as well as document check­sums are stored and archived, together with date, time and GPS data.
Based on this data, a hand­writing expert can verify who signed what document when and where.
The electronic signature comprises:

Why is the electronic
signature inSign provable?

Humans can be identified optically and by a multitude of other biometric features such as fingerprint, gait, the iris of the eye or their signature which also contains unique features. Therefore, a signature can be assigned to one person only. Any further information will be provided in this clip.
biometric features by example
Play Video

Compliance with legal provisions of GDPR, eIDAS & Co.

The electronic inSign process complies with all existing legal provisions,
including GDPR, eIDAS, BGB (German Civil Code) and BDSG (German Data Protection Act).
The electronic inSign process complies with all existing legal provisions, including GDPR, eIDAS, BGB (German Civil Code) and BDSG (German Data Protection Act). inSign uses an advanced electronic signature as standard. Pursuant to the eIDAS ordinance, it must be ensured that signatures be unambiguously attribut­able to signees. Companies must also be clearly identifi­able. Any subsequent alteration in the document must be excluded or recogni­sable. inSign meets all these require­ments.

The eIDAS ordinance of 1 July 2016 increases legal com­pliance when using inSign even more. inSign can be used in all European Union countries. Therefore, inSign provides valid evidence that cannot be rejected.

As far as the written form is required under the German Civil Code (BGB), apart from the advanced electronic signature (AES), the qualified electronic signature (QES) can also be used. Qualified electronic signatures are considered equivalent to signa­tures on paper. In the QES process, documents to be signed are trans­mitted to one of our cooper­ation partners.

Some cooperation partners

IDnow Logo
Bundesdruckerei Logo
D-Trust logo
Logo A Trust

­Annual certification by TÜV Saarland

inSign is assessed and certified by TÜV (Federal Inspection Association) at annual intervals. The experts of TÜV Saarland conduct tests relating to the security and re­liability of our electronic signature. The user friend­liness and error robustness of the tools also play a major part. During the development of our user-friendly software and app, we make sure that inSign complies with the most exacting quality and security standards. That’s why the TÜV quality criteria are so important for us as software producers.
The TÜV test label confirms the quality and security of our inSign application. Owing to the TÜV cer­tification, inSign is widely accepted in the market. The cer­tificate is a key quality criterion for our customers and partners.
You can see all test criteria under the respective certificate number (software: TK44339 and app: TK44340 The certification includes criteria such as IT security based on the fundamental IT protection regulations set out by the BSI, (Federal Office for Information Security) as well as the orientation help regarding the data protection require­ments for app developers and app providers of 16 June 2014 issued by the Düsseldorfer Kreis (an association of data protection authori­ties from the German federal states).

Excellent Security for inSign

Our digital signature solution was developed in Germany and is also hosted by German companies based in Germany. We stand for top quality standards, high standards in data protection and, therefore, happy customers.

inSign was successfully certified by BITMi e. V. and also awarded the quality labels
Software Hosted in Germany“ and „Software Made in Germany“.

inSign made and hosted in germany
iS2 has been awarded with the VdS 10000 certification in the field of information security by VdS.

Encryption of digital data

Encryption of
digital data

All documents are en­crypted together with the biometric signature data using asymmetric encryption. Further­more, an electronic seal protects inSign documents against alteration.

The private key that is required for this is typically created and stored by an in­dependent entity (for example a notary).
We would be pleased to support you upon request.

Questions about encryption?

More information (only available in german)

FAQ – Other frequently asked questions

Is there a difference between digital and electronic signatures?
Yes, the digital signature is a special type of electronic signature. It requires digital cer­tification and is mostly used by government authorities. Via a mathematical asymmetric cryptography procedure, all signatures are provided with a private user key that can be controlled solely by the signee.

Electronic signatures are more specific as they add electronic data to the signee’s ident­ification to unambiguously authenticate the signature. In this case, both parties can access the biometric data.
What is the difference between simple, advanced, and qualified signatures?
The simple electronic signature is not verifiable. It is therefore not advis­able for standard business processes. This is why we only use advanced and qualified signatures.

For most standard documents, the advanced electronic signature (AES) is the best choice. Therefore, inSign uses the AES as standard, which is legally compliant, con­clusive and practical. For certain contracts, the law requires the written form. In these cases, the qualified electronic signature (QES) is necessary. The advanced and qualified electronic signatures are both verifiable. The advanced electronic signature is characterised by significantly higher practicability since it does not require the effort of checking the signee’s identity before signature.

Video: Difference AES/QES (only available in German)
Does inSign use two-factor authentication (2FA)?

Yes. The two-factor authentication provides additional data protection as it proves a person’s identity with two different factors.

Upon release, the document link and the password for the account are sent separately. Software settings allow for different ways of authentication, for instance, by text message or e-mail.

What happens if the handwritten and electronic signatures do not match?

It is not unusual for handwritten and electronic signatures to have any visual similarities. However, biometric data (such as writing speed and direction) captured during the electronic signature provides the information required to prove authenticity of the signature.

Our customers rely on inSign
Made in Germany

Convinced and curious to try it out?

Ask for your free trial today!