inSign: secure & provable
electronic signature

100% legally compliant with AES & QES

The inSign electronic signature is a legally binding signature. By default, the advanced electronic signature is used, which contains biometric data in addition to the signature image.
Writing speed, direction, and breaks as well as document check­sums are stored and archived, together with date, time and GPS data.
Based on this data, a hand­writing expert can verify who signed what document when and where.
With the qualified electronic signature, no biometric data is recorded. The signatory is already identified before signing via Video-Ident, eID-Ident or Giro-Ident and provides his signature via TAN.
Why is the advanced electronic signature inSign provable?
Humans can be identified optically and by a multitude of other biometric features such as fingerprint, gait, the iris of the eye or their signature which also contains unique features. Therefore, a signature can be assigned to one person only. Any further information will be provided in this clip and in our blog.
biometric features by example
Play Video

Compliance with legal provisions of GDPR, eIDAS & Co.

The electronic inSign process complies with all existing legal provisions, including GDPR, eIDAS, BGB (German Civil Code) and BDSG (German Data Protection Act).
inSign uses an advanced electronic signature as standard. According to the eIDAS Regulation, the advanced electronic signature must be uniquely assignable to the signatory. Companies must also be clearly identifi­able. Any subsequent alteration in the document must be excluded or recogni­sable. inSign meets all these require­ments.

The eIDAS ordinance of 1 July 2016 increases legal com­pliance when using inSign even more. inSign can be used in all European Union countries. Therefore, inSign provides valid evidence that cannot be rejected.

As far as the written form is required under the German Civil Code (BGB), apart from the advanced electronic signature (AES), the qualified electronic signature (QES) can also be used. Qualified electronic signatures are considered equivalent to signa­tures on paper. In the QES process, documents to be signed are trans­mitted to one of our cooper­ation partners.

Some cooperation partners

IDnow Logo
Bundesdruckerei Logo
D-Trust logo
Logo A Trust

­Annual certification by TÜV Saarland

inSign is assessed and certified by TÜV (Federal Inspection Association) at annual intervals. The experts of TÜV Saarland conduct tests relating to the security and re­liability of our electronic signature. The user friend­liness and error robustness of the tools also play a major part. During the development of our user-friendly software and app, we make sure that inSign complies with the most exacting quality and security standards. That’s why the TÜV quality criteria are so important for us as software producers.
The TÜV test label confirms the quality and security of our inSign application. Owing to the TÜV cer­tification, inSign is widely accepted in the market. The cer­tificate is a key quality criterion for our customers and partners.
You can see all test criteria under the respective certificate number (software: TK44339 and app: TK44340 The certification includes criteria such as IT security based on the fundamental IT protection regulations set out by the BSI, (Federal Office for Information Security) as well as the orientation help regarding the data protection require­ments for app developers and app providers of 16 June 2014 issued by the Düsseldorfer Kreis (an association of data protection authori­ties from the German federal states).

Excellent Security for inSign

Our digital signature solution was developed in Germany and is also hosted by German companies based in Germany. We stand for top quality standards, high standards in data protection and, therefore, happy customers.

inSign was successfully certified by BITMi e. V. and also awarded the quality labels
Software Hosted in Germany“ and „Software Made in Germany“.

inSign made and hosted in germany
iS2 has been awarded with the VdS 10000 certification in the field of information security by VdS.

Encryption of digital data

All captured biometric signature data is encrypted using an asymmetric encryption method. Further­more, an electronic seal protects inSign documents against alteration.

The private key that is required for this is typically created and stored by an in­dependent entity (for example a notary).
We would be pleased to support you upon request.

Questions about encryption?

FAQ – Other frequently asked questions

Is there a difference between digital and electronic signatures?
Yes, the digital signature is a special type of electronic signature. It requires digital cer­tification and is mostly used by government authorities. Via a mathematical asymmetric cryptography procedure, all signatures are provided with a private user key that can be controlled solely by the signee.

Electronic signatures are more specific as they add electronic data to the signee’s ident­ification to unambiguously authenticate the signature. In this case, both parties can access the biometric data.
What is the difference between simple, advanced, and qualified signatures?
The simple electronic signature is not verifiable. It is therefore not advis­able for standard business processes. This is why we only use advanced and qualified signatures.

For most standard documents, the advanced electronic signature (AES) is the best choice. Therefore, inSign uses the AES as standard, which is legally compliant, con­clusive and practical. For certain contracts, the law requires the written form. In these cases, the qualified electronic signature (QES) is necessary. The advanced and qualified electronic signatures are both verifiable. The advanced electronic signature is characterised by significantly higher practicability since it does not require the effort of checking the signee’s identity before signature.

Video: Difference AES/QES (only available in German)
Blog: Three types of electronic signature
Does inSign use two-factor authentication (2FA)?

Yes. The two-factor authentication provides additional data protection as it proves a person’s identity with two different factors.

Upon release, the document link and the password for the account are sent separately. Software settings allow for different ways of authentication, for instance, by text message or e-mail.

What happens if the handwritten and electronic signatures do not match?
It is not unusual for handwritten and electronic signatures to have any visual similarities. However, biometric data (such as writing speed and direction) captured during the standard signature (AES) provides the information required to prove authenticity of the signature.
Our customers rely on inSign Made in Germany
Convinced and curious to try it out?
Ask for your free trial today!