Qualified eIDAS Timestamping: Proof of Certain Date

Electronic timestamping is often perceived as a minor technical detail. In reality, it constitutes one of the pillars of the probative value of an electronically signed document. Without it, a digital signature says nothing about the moment when it was affixed — a gap that can prove fatal in case of litigation. Regulation eIDAS No. 910/2014 precisely introduced the concept of qualified timestamping, the highest level of date certification recognised in all Member States of the European Union. This article decrypts this mechanism, its technical requirements, its legal scope and the concrete situations in which it becomes indispensable.

What is qualified timestamping under eIDAS?

Definition and timestamping levels

The eIDAS Regulation distinguishes two categories of electronic timestamping:

• Simple electronic timestamping: any data in electronic form associating a date and time with other data. It benefits from a rebuttable presumption of reliability (Art. 41 eIDAS).
• Qualified timestamping: higher level, issued by a Qualified Trust Service Provider (QTSP) registered on a supervised national trust list. It benefits from a legal presumption of the accuracy of the date and time and integrity of the timestamped data (Art. 42 eIDAS).

This distinction is fundamental: a qualified timestamp is presumed accurate until proved otherwise, which reverses the burden of proof in case of dispute. To learn more about the different levels of trust provided by this text, consult our complete guide to eIDAS 2.0 Regulation.

Technical requirements of a qualified timestamp

To be qualified under eIDAS, a timestamp must meet strict criteria defined in Article 42 of the Regulation:

1. Link the date and time to the data in such a way as to reasonably exclude any possibility of undetectable modification.
2. Be based on a precise time source linked to Coordinated Universal Time (UTC), traceable and compliant with ETSI EN 319 421 and EN 319 422 standards.
3. Be signed using an advanced electronic signature or advanced electronic seal of the qualified QTSP, or via an equivalent method.

In practice, the service provider receives a cryptographic fingerprint (hash) of the document, applies a signed time stamp to it, and returns a timestamping token (TST) compliant with RFC 3161 protocol. This process never transmits the document's content to the service provider — only its fingerprint — which guarantees data confidentiality.

Trust lists and national supervision

In France, ANSSI (Agence Nationale de la Sécurité des Systèmes d'Information) is the supervisory authority that maintains the list of qualified service providers. This list is published in signed XML format and integrated into the European trust list (EU Trusted List) accessible via the eIDAS portal of the European Commission. Any service provider listed there has undergone rigorous compliance audit according to ETSI EN 319 401 standards (general requirements) and ETSI EN 319 421 (policy profile for qualified TSAs).

When evaluating an electronic signature solution for your company, verifying that the service provider integrates a qualified timestamp — and not just an internal timestamp — is a decisive selection criterion.

Why is qualified timestamping crucial for proof of date?

The date in the digital evidence chain

A qualified electronic signature proves who signed and that the document has not been modified. But it does not prove when the signature was affixed, unless a qualified timestamp is associated with it. This distinction becomes particularly important in several scenarios:

• Priority of an invention: to establish that a patent or know-how existed before a specific date.
• Compliance with a contractual deadline: to demonstrate that a contract was signed before the expiration of an offer.
• Long-term evidential archiving: the cryptographic validity of a signature can expire with the obsolescence of algorithms (signature ageing phenomenon). A qualified timestamp would make it possible to "re-timestamp" the document and extend its probative value.

Signature ageing and re-timestamping

Cryptographic algorithms evolve. A signature certificate based on RSA-2048, considered secure in 2015, could be deemed insufficient by 2030 with the rise of quantum computing. Archiving with probative value relies on the practice of re-timestamping: before the presumed expiration of an algorithm's robustness, a new qualified timestamp is applied to the whole (document + signature + previous timestamp), thus creating an uninterrupted chain of trust.

This approach is standardised in ETSI EN 319 102-2 (procedures for verification of advanced and qualified signatures) and recommended for any document to be preserved for more than 10 years — notarial deeds, long-term commercial contracts, medical records or regulatory documents.

European interoperability and mutual recognition

One of the major strengths of qualified eIDAS timestamping lies in its automatic recognition throughout all 27 Member States (Art. 41.3 eIDAS). A qualified timestamp issued by a French QTSP produces the same legal effects in Germany, Spain or Poland. This legal portability is particularly valuable for companies operating on cross-border European markets, signing contracts with partners in several countries. To compare the different approaches available on the market, our comparison of electronic signature solutions offers detailed analysis.

Integration of qualified timestamping in an electronic signature workflow

Technical architecture of a compliant process

In a qualified electronic signature (QES) process, timestamping is integrated at several levels of the signed document, according to ETSI formats defined for long-term signatures:

• XAdES-LTA format (XML Advanced Electronic Signatures – Long-Term Archive): for XML documents.
• PAdES-LTA format (PDF Advanced Electronic Signatures – Long-Term Archive): for PDFs, the most common format in business.
• CAdES-LTA format (CMS Advanced Electronic Signatures – Long-Term Archive): for generic binary files.

The LTA (Long-Term Archive) suffix specifically designates the level that incorporates a qualified timestamp and the revocation data necessary for future verification, even after certificate expiration.

The role of the SaaS signature platform

In a SaaS solution like Certyneo, the integration of qualified timestamping is transparent to the end user. The platform:

1. Generates the cryptographic fingerprint of the finalised document.
2. Sends this fingerprint to the qualified TSA (Time Stamping Authority) partner via a secure connection.
3. Receives the signed timestamping token (TST).
4. Incorporates the TST into the PDF/A file according to the PAdES-LTA format.
5. Stores everything in a secure archiving environment, which is itself auditable.

The user thus has a document whose signature completion date is certified and verifiable by any third party, without dependence on the infrastructure of the platform that performed the signature. This independence of verification is a criterion of excellence often underestimated in calls for tender. If you are considering changing service provider, our guide to migration from DocuSign or YouSign to Certyneo details the technical points of vigilance to anticipate.

Verification and auditability

Any document incorporating a qualified PAdES-LTA timestamp can be verified free of charge via open source tools (DSS Library from the European Commission) or online validators compliant with eIDAS. Verification confirms:

• The identity of the signatory (qualified certificate).
• The integrity of the document (no post-signature modification).
• The certified date and time (valid TST token, TSA on trust list).
• Non-revocation of the certificate at the time of signature.

This complete traceability constitutes a decisive advantage for legal teams who must regularly produce documentary evidence in the context of litigation or regulatory audits.

Legal framework applicable to qualified timestamping

Regulation eIDAS No. 910/2014

Regulation (EU) No. 910/2014 of the European Parliament and of the Council of 23 July 2014, called the eIDAS Regulation, constitutes the legal foundation of qualified timestamping in Europe. Its key provisions are:

• Article 3(34): defines electronic timestamping as "data in electronic form that associates other data in electronic form with a particular instant and establishes the evidence that the latter data existed at that instant".
• Article 41: grants simple electronic timestamps a rebuttable presumption of accuracy.
• Article 42: sets out the conditions for a timestamp to be qualified (traceable UTC source, qualified QTSP signature, cryptographic link with the data).
• Article 42(2): confers on qualified timestamping a legal presumption of accuracy of the date and time and integrity of the associated data. This presumption applies before any court in the EU without requiring additional proof.

The eIDAS 2.0 Regulation (EU Regulation 2024/1183, progressively entering into force from 2024) strengthens these provisions by extending the framework to European digital identity wallets (EUDIW), without questioning the foundations of qualified timestamping.

French Civil Code — Articles 1366 and 1367

Under French law, article 1366 of the Civil Code states that "an electronic document has the same probative force as a document on paper, provided that the person from whom it originates can be duly identified and that it is established and preserved in conditions such as to guarantee its integrity". Article 1367 clarifies the conditions for a reliable electronic signature. Qualified timestamping directly contributes to meeting the condition of integrity and certain dating required by these texts.

Furthermore, Decree No. 2017-1416 of 28 September 2017 on electronic signature explicitly refers to the eIDAS Regulation to define the levels of signature admissible before French courts.

Data retention and GDPR obligations

Regulation (EU) 2016/679 (GDPR), applicable to any processing of personal data, imposes appropriate technical security measures (Art. 32). Qualified timestamping, by guaranteeing the integrity and dating of processed data, contributes to GDPR compliance in document flows involving personal data.

Certain sectors impose specific legal retention periods: 5 years for commercial contracts (Art. L.110-4 of the Commercial Code), 10 years for civil documents, 20 years for certain medical documents. For these long-term archiving scenarios, the absence of qualified timestamping and periodic re-timestamping constitutes a major legal risk: the document could lose its probative value before the legal retention period expires.

ETSI reference standards

• ETSI EN 319 421: policy and security requirements for qualified TSAs (Time Stamping Authorities).
• ETSI EN 319 422: timestamping token profile.
• ETSI EN 319 102-1/2: procedures for creation and verification of advanced and qualified signatures, integrating timestamping.
• ETSI EN 319 132 (XAdES) and EN 319 122 (CAdES): long-term signature formats.

Use cases: when is qualified timestamping decisive?

Scenario 1 — Business law firm managing litigation files

A business law firm of around fifteen employees, specialising in B2B contractual disputes, uses qualified electronic signature for its procedural documents, fee agreements and sensitive correspondence. In the context of litigation over the date of acceptance of a commercial offer, the opposing party contests that their client's signature is prior to the expiration of the deadline stipulated in the offer.

Thanks to qualified timestamping integrated into the PAdES-LTA document, the firm produces a timestamping token issued by a QTSP registered on the French trust list. The certified date — to the second — is independently verifiable by the judge and judicial expert. The legal presumption of Article 42 eIDAS applies: the burden of proof to the contrary now rests with the opposing party. The case is settled without costly competing expert assessment, saving approximately 15 to 25 days of proceedings according to usual estimates for this type of litigation.

Scenario 2 — Manufacturing SME managing a portfolio of supplier contracts

An SME in manufacturing managing around 300 supplier contracts per year — NDAs, general purchasing conditions, price amendments — seeks to secure its document archiving in the context of its ERP overhaul. The company wishes to maintain probative value of its contracts for a minimum of 10 years, in compliance with its legal obligations and its insurer's requirements.

By deploying an electronic signature solution integrating qualified timestamping and PAdES-LTA format, the SME automatically constitutes archives with long-term probative value. An internal audit conducted 18 months after deployment reveals a 40% reduction in time spent on document search and reconstruction during supplier audits, and an almost complete elimination of disputes relating to disagreements over the entry into force date of price amendments. The human resources teams benefit from the same advantage for employment contracts and amendments, with enhanced compliance during labour inspections.

Scenario 3 — Healthcare establishment and archiving of patient consents

A hospital group of intermediate size (approximately 600 beds) dematerialises its informed consent forms for surgical procedures and clinical trials. The applicable regulation (Art. L.1111-4 of the Public Health Code, Regulation (EU) 536/2014 on clinical trials) requires not only the traceability of consent but also the certainty of its dating prior to the medical procedure.

The integration of qualified timestamping in the consent signature workflow ensures that the consent date is certified and incontestable, including in the event of inspection by health authorities (HAS, ANSM) or medical litigation. For this sector, electronic signature solutions adapted to healthcare must imperatively integrate this qualified timestamping to meet specific regulatory requirements. Establishments that have deployed this type of solution generally observe a reduction of 60 to 70% in the time spent on administrative management of consents compared to a paper process, according to benchmarks published by associations of healthcare facility directors.

Conclusion

Qualified eIDAS timestamping is not merely a digital seal: it is a strong legal presumption, recognised throughout the European Union, that transforms the date of an electronically signed document into evidence enforceable before any court. By relying on supervised QTSPs, rigorous ETSI standards and long-term archiving formats (PAdES-LTA), it provides legal certainty that neither an internal server timestamp nor a simple file metadata can match.

For companies that sign contracts, manage sensitive files or need to preserve documentary evidence over several years, integrating qualified timestamping into their signature workflow is no longer an option — it is a requirement of sound legal practice.

Certyneo natively integrates qualified timestamping into each qualified electronic signature issued on its platform. Discover how to secure your documentary evidence by starting your free trial or consulting our transparent pricing.