Proof of electronic signature: what you need to know

The proof at the heart of the electronic signature

The proof at the heart of the electronic signatureUnlike paper, the electronic signature has its own proof. A set of elements is kept to provewhosigned,when ⬥⬥⬥,from whereandon what content ⬥⬥⬥.This proof can be used in the event of a dispute before a court — often more solid than a handwritten signature.

The components of the proof

1. The audit trail

Time-stamped log of all actions: sending, opening (IP, user-agent), OTP entered, effective signature, possible refusal, expiration.

2. The cryptographic fingerprint

2. The cryptographic fingerprint

Hash SHA-256 of the document at the time of signing. Any modification produces a different fingerprint — the signature becomes invalid.

3. Timestamp

Precise date and time, ideally issued by a qualified third party time stamp. Seeelectronic timestamp ⬥⬥⬥.4. Identification of the signatory

Proof that the signatory is indeed who he claims: email received, OTP entered, possible qualified certificate.

How to check the proof

Open the PDF in Adobe Reader → Signature Properties. For in-depth analysis, export the audit trail from your platform. See

how to verify a signed document ⬥⬥⬥.When proof is usefulContractual dispute (client disputes having signed)

Internal or external audit

• Internal or external audit
• Regulatory control (URSSAF, CNIL)
• Industrial tribunal dispute
• Judicial request
• The audit trail is the main proof, enforceable as long as it is produced by an eIDAS compliant platform.

Retention period

10 years

• for commercial contracts5 years
• after end for employment contracts30 years
• for notarial actsSee

conservation of signed documents ⬥⬥⬥.conservation of signed documents ⬥⬥⬥.Errors to avoid

Only keep the PDF, not the audit trail

• Use a platform without qualified timestamp
• Do not regularly check the integrity of the archives
• Lose platform access credentials
• Use case: litigation prud'homal

A dismissed employee disputes having signed his non-competition rider. The employer produces: the PDF in PAdES format, the audit trail (IP consistent with the home, OTP entered on the personal telephone), the qualified timestamp. The industrial tribunal validates the proof.

How Certyneo helps you

Any envelope signed via Certyneo automatically generates a complete audit trail, integrated into the PDF and kept for 10 years. In one click you export the signed PDF, the detailed audit trail and the timestamp certificate.

Discover the Certyneo electronic signature solution

FAQ

Is the audit trail admissible in court?

Is the audit trail admissible in court?

Yes, recognized by the French courts as long as it is produced by an eIDAS compliant platform.

Can I make my own audit trail?

Technically yes, but it will have less value than a lead produced by a trusted third party.

If the platform disappears?

PAdES PDFs remain verifiable offline. The audit trail must be exported regularly.

Can I export the proof in bulk?

Yes, most platforms offer CSV or JSON export.

Is the proof different for SES/AES/QES?

The structure is the same. The QES embeds stronger cryptographic elements.

Conclusion

Proof makes the difference between a signature “like that” and a legally enforceable signature. Take care of its constitution and conservation.

Try Certyneo to send, sign and track your documents online simply, quickly and securely.