Qualified eIDAS Timestamping: Proof of Certain Date

Electronic timestamping is often perceived as an accessory technical detail. In reality, it constitutes one of the pillars of the probative value of an electronically signed document. Without it, a digital signature says nothing about the moment at which it was affixed — a gap that can prove fatal in the event of litigation. Regulation eIDAS No. 910/2014 precisely introduced the notion of qualified timestamping, the highest level of date certification recognised in all Member States of the European Union. This article decrypts this mechanism, its technical requirements, its legal scope and the concrete situations in which it becomes indispensable.

What is qualified timestamping under eIDAS?

Definition and timestamping levels

Regulation eIDAS distinguishes two categories of electronic timestamping:

• Simple electronic timestamping: any data in electronic form associating a date and time with other data. It benefits from a rebuttable presumption of reliability (Art. 41 eIDAS).
• Qualified timestamping: higher level, issued by a Qualified Trust Service Provider (QTSP) registered on a national trust list supervised. It benefits from a legal presumption of accuracy of the date and time and integrity of timestamped data (Art. 42 eIDAS).

This distinction is fundamental: qualified timestamping is presumed accurate until proven otherwise, which reverses the burden of proof in the event of dispute. To learn more about the different levels of trust provided for in this text, consult our complete guide to eIDAS 2.0 regulation.

Technical requirements for qualified timestamping

To be qualified under eIDAS, timestamping must meet strict criteria defined in Article 42 of the regulation:

1. Link the date and time to the data in such a way as to reasonably exclude any possibility of undetectable modification.
2. Be based on an accurate time source linked to Coordinated Universal Time (UTC), traceable and compliant with ETSI EN 319 421 and EN 319 422 standards.
3. Be signed using an advanced electronic signature or advanced electronic seal of the qualified QTSP, or via an equivalent method.

In practice, the service provider receives a cryptographic fingerprint (hash) of the document, affixes a signed time stamp to it, and returns a timestamping token (TST) compliant with RFC 3161 protocol. This process never transmits the document's contents to the service provider — only its fingerprint — which guarantees data confidentiality.

Trust lists and national supervision

In France, ANSSI (Agence Nationale de la Sécurité des Systèmes d'Information) is the supervisory authority that maintains the list of qualified service providers. This list is published in signed XML format and integrated into the European trust list (EU Trusted List) accessible via the eIDAS portal of the European Commission. Any service provider listed there has undergone rigorous compliance audit according to ETSI EN 319 401 (general requirements) and ETSI EN 319 421 (policy profile for qualified TSAs) standards.

When evaluating a electronic signature solution for your business, verifying that the service provider integrates qualified timestamping — not just simple internal timestamping — is a decisive selection criterion.

Why is qualified timestamping crucial for proof of date?

Date in the digital evidence chain

A qualified electronic signature proves who signed and that the document has not been altered. But it does not prove when the signature was affixed, unless qualified timestamping is associated with it. This distinction becomes crucial in several scenarios:

• Prior invention: to establish that a patent or know-how existed before a specific date.
• Compliance with a contractual deadline: to demonstrate that a contract was signed before the expiry of an offer.
• Long-term archival evidence: the cryptographic validity of a signature can expire with algorithm obsolescence (signature ageing phenomenon). Qualified timestamping would allow the document to be "re-timestamped" and extend its probative value.

Signature ageing and re-timestamping

Cryptographic algorithms evolve. A signature certificate based on RSA-2048, considered secure in 2015, could be deemed insufficient by 2030 with the rise of quantum computing. Long-term probative archival relies on the practice of re-timestamping: before the presumed expiry of algorithm robustness, a new qualified timestamp is applied to the whole (document + signature + previous timestamp), creating an uninterrupted chain of trust.

This approach is standardised in ETSI EN 319 102-2 (procedures for verification of advanced and qualified signatures) and recommended for any document to be retained for more than 10 years — notarial deeds, long-term commercial contracts, medical records or regulatory documents.

European interoperability and mutual recognition

One of the major assets of eIDAS qualified timestamping lies in its automatic recognition throughout all 27 Member States (Art. 41.3 eIDAS). Qualified timestamping issued by a French QTSP produces the same legal effects in Germany, Spain or Poland. This legal portability is particularly valuable for businesses operating in cross-border European markets, which sign contracts with partners in multiple countries. To compare the different approaches available on the market, our comparison of electronic signature solutions offers detailed analysis.

Integration of qualified timestamping in an electronic signature workflow

Architecture of a compliant workflow

In a qualified electronic signature (QES) process, timestamping is integrated at several levels of the signed document, according to ETSI formats defined for long-term signatures:

• XAdES-LTA format (XML Advanced Electronic Signatures – Long-Term Archive): for XML documents.
• PAdES-LTA format (PDF Advanced Electronic Signatures – Long-Term Archive): for PDFs, the most common format in business.
• CAdES-LTA format (CMS Advanced Electronic Signatures – Long-Term Archive): for generic binary files.

The LTA (Long-Term Archive) suffix precisely designates the level that incorporates qualified timestamping and the revocation data necessary for future verification, even after certificates expire.

The role of the SaaS signature platform

In a SaaS solution like Certyneo, the integration of qualified timestamping is transparent to the end user. The platform:

1. Generates the cryptographic fingerprint of the finalised document.
2. Sends this fingerprint to the qualified TSA (Time Stamping Authority) partner via a secure connection.
3. Receives the signed timestamping token (TST).
4. Incorporates the TST into the PDF/A file according to the PAdES-LTA format.
5. Stores the whole in a secure archival environment, itself auditable.

The user thus has a document whose signature completion date is certified and verifiable by any third party, without dependence on the infrastructure of the platform that performed the signature. This verification autonomy is a criterion of excellence often underestimated during tender calls. If you are considering changing service providers, our migration guide from DocuSign or YouSign to Certyneo details the technical watchpoints to anticipate.

Verification and auditability

Any document incorporating qualified PAdES-LTA timestamping can be verified free of charge via open source tools (DSS Library of the European Commission) or online validators compliant with eIDAS. Verification confirms:

• The identity of the signatory (qualified certificate).
• The integrity of the document (no post-signature modification).
• The certified date and time (valid TST token, TSA on trust list).
• Non-revocation of the certificate at the time of signature.

This complete traceability constitutes a determining advantage for legal teams who must regularly produce documentary evidence in the context of litigation or regulatory audits.

Legal framework applicable to qualified timestamping

Regulation eIDAS No. 910/2014

Regulation (EU) No. 910/2014 of the European Parliament and of the Council of 23 July 2014, called eIDAS Regulation, constitutes the legal foundation of qualified timestamping in Europe. Its key provisions are:

• Article 3(34): defines electronic timestamping as "data in electronic form which associates other data in electronic form with a particular instant and establishes proof that such other data existed at that instant".
• Article 41: grants simple electronic timestamping a rebuttable presumption of accuracy.
• Article 42: sets the conditions for timestamping qualification (traceable UTC source, qualified QTSP signature, cryptographic link with data).
• Article 42(2): confers on qualified timestamping a legal presumption of accuracy of the date and time and integrity of associated data. This presumption applies before any court in the EU without requiring additional proof.

The eIDAS 2.0 regulation (Regulation EU 2024/1183, progressively entering into application from 2024) strengthens these provisions by extending the framework to European digital identity wallets (EUDIW), without calling into question the foundations of qualified timestamping.

French Civil Code — Articles 1366 and 1367

Under French law, article 1366 of the Civil Code provides that "electronic writing has the same probative force as writing on paper, provided that the person from whom it originates can be duly identified and that it is established and preserved under conditions likely to guarantee its integrity". Article 1367 specifies the conditions for reliable electronic signature. Qualified timestamping directly participates in meeting the requirement of integrity and certain dating required by these texts.

Moreover, decree No. 2017-1416 of 28 September 2017 relating to electronic signature explicitly refers to eIDAS Regulation to define the levels of signature admissible before French courts.

Storage obligations and GDPR

Regulation (EU) 2016/679 (GDPR), applicable to any processing of personal data, imposes appropriate technical security measures (Art. 32). Qualified timestamping, by guaranteeing the integrity and dating of processed data, contributes to GDPR compliance in document flows involving personal data.

Certain sectors impose specific legal storage periods: 5 years for commercial contracts (Art. L.110-4 of the Commercial Code), 10 years for civil records, 20 years for certain medical documents. For these long-term archival purposes, the absence of qualified timestamping and periodic re-timestamping constitutes a major legal risk: the document could lose its probative value before the end of the legal retention period.

Reference ETSI standards

• ETSI EN 319 421: policy and security requirements for qualified TSAs (Time Stamping Authorities).
• ETSI EN 319 422: timestamping token profile.
• ETSI EN 319 102-1/2: procedures for creation and verification of advanced and qualified signatures, integrating timestamping.
• ETSI EN 319 132 (XAdES) and EN 319 122 (CAdES): long-term signature formats.

Use cases: when is qualified timestamping decisive?

Scenario 1 — Business law firm managing litigation files

A business law firm of about fifteen collaborators, specialising in B2B contract disputes, uses qualified electronic signature for its procedural documents, fee agreements and sensitive correspondence. In the context of litigation concerning the date of acceptance of a commercial offer, the opponent disputes that his client's signature predates the expiry of the period stipulated in the offer.

Thanks to qualified timestamping integrated into the PAdES-LTA document, the firm produces a timestamping token issued by a QTSP registered on the French trust list. The certified date — to the second — is independently verifiable by the judge and judicial expert. The legal presumption of Article 42 eIDAS applies: the burden of contrary proof now rests with the opponent. The case is resolved without costly conflicting expertise, saving approximately 15 to 25 days of proceedings according to usual estimates for this type of litigation.

Scenario 2 — SME managing a portfolio of supplier contracts

An SME managing approximately 300 supplier contracts per year — NDAs, general purchase terms, price amendments — seeks to secure its documentary archiving in the context of an overhaul of its ERP. The company wishes to preserve probative value of its contracts for a minimum of 10 years, in compliance with its legal obligations and its insurer's requirements.

By deploying an electronic signature solution integrating qualified timestamping and PAdES-LTA format, the SME automatically constitutes archives with long-term probative value. An internal audit conducted 18 months after deployment reveals a 40% reduction in time spent on searching and reconstituting documents during supplier audits, and an almost total elimination of disputes related to disagreements over the effective date of price amendments. The human resources teams benefit from the same advantage for employment contracts and amendments, with enhanced compliance during labour inspections.

Scenario 3 — Healthcare facility and archiving of patient consents

An intermediate-sized hospital group (approximately 600 beds) dematerialises its informed consent forms for surgical procedures and clinical trials. Applicable regulations (Art. L.1111-4 of the Public Health Code, Regulation (EU) 536/2014 on clinical trials) require not only traceability of consent but also certainty of its dating prior to the medical act.

The integration of qualified timestamping into the consent signature workflow guarantees that the date of consent is certified and incontestable, including in the event of inspection by health authorities (HAS, ANSM) or medical litigation. For this sector, electronic signature solutions adapted to healthcare must imperatively integrate this qualified timestamping to meet specific regulatory obligations. Facilities that have deployed this type of solution generally experience a 60 to 70% reduction in time spent on administrative management of consents compared to a paper process, according to benchmarks published by associations of health facility directors.

Conclusion

Qualified eIDAS timestamping is not just a simple digital seal: it is a strong legal presumption, recognised throughout the European Union, which transforms the date of an electronically signed document into evidence enforceable in any court. By relying on supervised QTSPs, rigorous ETSI standards and long-term archival formats (PAdES-LTA), it offers legal security that neither an internal server timestamp nor a simple file metadata can match.

For businesses that sign contracts, manage sensitive files or must preserve documentary evidence over several years, integrating qualified timestamping into their signature workflow is no longer an option — it is a requirement of good legal practice.

Certyneo natively integrates qualified timestamping in each qualified electronic signature issued on its platform. Discover how to secure your documentary evidence by starting your free trial or consulting our transparent pricing.