Electronic Signature Proof: What You Need to Know

Proof at the Heart of Electronic Signature

Unlike paper, the electronic signature carries its own proof. A set of elements is preserved to prove who signed, when, from where and on what content.

This proof can be relied upon in case of litigation before a court — often more solid than a handwritten signature.

The Components of Proof

1. The Audit Trail

Time-stamped log of all actions: sending, opening (IP, user-agent), OTP entered, effective signature, possible refusal, expiration.

2. The Cryptographic Hash

SHA-256 hash of the document at the time of signature. Any modification produces a different hash — the signature becomes invalid.

3. The Timestamp

Precise date and time, ideally issued by a qualified timestamping authority. See electronic timestamp.

4. Identification of the Signatory

Proof that the signatory is who they claim to be: email received, OTP entered, possible qualified certificate.

How to Verify the Proof

Open the PDF in Adobe Reader → Signature Properties. For detailed analysis, export the audit trail from your platform. See how to verify a signed document.

When Proof is Useful

• Contractual dispute (client contests having signed)

• Internal or external audit

• Regulatory control (URSSAF, CNIL)

• Employment tribunal proceedings

• Judicial request

The audit trail is the main proof, enforceable as soon as it is produced by an eIDAS-compliant platform.

Retention Period

• 10 years for commercial contracts

• 5 years after termination for employment contracts

• 30 years for notarial deeds

See retention of signed documents.

Mistakes to Avoid

• Keep only the PDF, not the audit trail

• Use a platform without qualified timestamping

• Do not regularly verify the integrity of archives

• Lose the access credentials to the platform

Use Case: Employment Tribunal Proceedings

A dismissed employee contests having signed their non-compete amendment. The employer produces: the PDF in PAdES format, the audit trail (IP consistent with home address, OTP entered on personal phone), the qualified timestamp. The employment tribunal validates the proof.

How Certyneo Helps You

Every envelope signed via Certyneo automatically generates a complete audit trail, embedded in the PDF and retained for 10 years. With one click you export the signed PDF, the detailed audit trail and the timestamping certificate.

Discover the Certyneo electronic signature solution

FAQ

Is the Audit Trail Admissible in Court?

Yes, recognized by French courts as long as it is produced by an eIDAS-compliant platform.

Can I Create My Own Audit Trail?

Technically yes, but it will have less value than an audit trail produced by a trusted third party.

If the Platform Disappears?

PAdES PDFs remain verifiable offline. The audit trail should be exported regularly.

Can I Export Proof in Bulk?

Yes, most platforms offer CSV or JSON export.

Is the Proof Different for SES/AES/QES?

The structure is the same. QES carries stronger cryptographic elements.

Conclusion

Proof makes the difference between a signature "just like that" and a legally enforceable signature. Take care in its creation and retention.

Try Certyneo to send, sign and track your documents online simply, quickly and securely.