The world used to be simple.
Contracts were concluded with a handshake or drawn up on paper and signed by hand. Today it can happen that a billion dollar business transaction is null and void due to a formal error in the digital signature.

The digital world is complex and we regularly do things without properly weighing the legal consequences.

• We enter into contracts when we click a button on the Internet.
• We use scanned signatures like originals.
• We use digital signature services from cloud providers.

The question therefore arises: What actually applies when things get serious – if we want to conclude an agreement that is legally enforceable? When do I enter into a contract? Who has to prove that the contract was concluded? Which legal requirements apply?

In the following we analyze these questions in relation to the digital conclusion of contracts under private law, as they typically occur in business transactions.

Technical implementation

Three aspects are central to the legal enforceability of contractual agreements:

1. Content of the contract: What was agreed?
2. Expression of will: Were identical expressions of will made?
3. Identity: Who are the parties to the agreement?

Only when these three aspects are clear, i.e. when a contract has been concluded, can one discuss rights and obligations from the agreement.

In the following we explain the technical implementation of these three aspects, as they lead to essential conclusions.

Make the content of the contract unchangeable

In the physical world, this is clear: we put the contract in writing, and the paper is relatively unchangeable. In the case of digital contracts, which are available in the form of a PDF file, for example, things are more complicated. PDF files can be replicated and modified.

To render a PDF file immutable, a checksum must be calculated and inserted into the document. A change to the document always results in a changed checksum. If I have two documents with the same checksum, I can be sure that their content is absolutely identical. We need this checksum in the following step.

Prove the expression of will

Orally or in writing, handshake or signature. Both are possible as an expression of will, but the signature has clear advantages in terms of provability. Digitally, things get more involved . To sign, both parties take the checksum generated above and sign it. That means that they encrypt them. The encryption relies on two keys, one secret and one public. With the public key, I can check whether the encryption has been carried out with the secret key.

This means that if I have a checksum that matches my document and the public key of the other party, I can prove that the party signed the document with their private key.

This is technically complex, but takes place millions of times a day. The entire Internet is based on the technologies described.[1]

The digital signing of a document now works as follows:

• Generate document.
• Calculate checksum.
• Have the checksum signed by parties.
• Insert signed checksums into the document.

Done: I can prove that the owners of the private keys knew and signed the contract. Now we use the “signing” borrowed from cryptography, and we have a simple electronic signature.

From a purely technical point of view, this process is absolutely “safe”. With today’s technology, it takes me an infinite amount of time to attempt fraud.[2]

To clarify: All optical features inserted into the document such as images of signatures, logos, stamps etc. are completely irrelevant and only serve to please the user. Technically and legally, these elements are meaningless.

Identity

Unfortunately, a simple digital signature doesn’t prove anything. For example, I can easily deny that I had a private key. With that I have a contract with signed content. But I can’t prove who the other party is.

This is where legal regulation comes into play. It defines how the identity of the parties is to be determined and linked to the signatures. There are three levels:

• Simple: No guidelines whatsoever. Everything is allowed. Low assurance.
• Advanced: The assurance that the link between the three factors can be verified must be “substantial”.
• Qualified: « High » assurance that the link is correct. The requirements vary depending on the jurisdiction.

Implementations available in Switzerland

Simple signature

Various implementations with the “simple signature” level are available on the market. Above all, Docusign is a well-known representative. Here you get a link that displays the document and enables it to be signed. The user types or draws his name and this is inserted into the document as a picture. The process described above is run in the background and a signed checksum is inserted into the document.

If we analyze this process, we have the following components:

• A checksum is calculated for the content of the contract.
• The expression of will takes place as a click or by typing the name.
• The identity is unchecked. The connection to a perso can only be made via the custom link sent by the sender to the recipient’s email.

If we dig a little deeper, we can find out that the checksum was signed by Docusign and not by a secret key that is only known to the owner of the email address.

In summary, with a simple Docusign signature you can only ensure that the company Docusign knew the content of the document.

In the best case scenario, sending a link via email creates a very weak link between the person and activities on the Docusign platform. The evidential value should tend towards zero.

Advanced signature (FES)

Various providers enable advanced electronic signatures (FES). In Switzerland, these are subject to regulation with regard to the collection and linking of the factors (ZertES). In the context of the free assessment of evidence (Art. 157 ZPO), courts will attach increased evidential value to advanced electronic signatures. In order to achieve the required security, the providers have come up with various methods, especially for identification, in order to achieve substantial security with regard to identification. There is a small boom in enterprise-internal processes. Using the combination of company email address and security with regard to the identity of the employees, a solid procedure can be constructed that is sufficient for many business transactions.

Swisscom offers a specialty in Switzerland with the argument that identification is required by law when handing over a SIM card and that a substantial level of security is thus achieved. A user can trigger a signature using an SMS code. The potential problem here is that the link between the contractual partner and his mobile number has to be established, which cannot always be taken for granted. It is also questionable whether it will be possible at the crucial moment to obtain evidence of the identity of the number owner.

The advanced signature in combination with an appropriate identification method can be an adequate compromise for many contracts. Before using the advanced electronic signature, however, it should be clarified whether the corresponding contract or type of contract must be in writing (written form requirement; form required by law). For most contract types, this is not the case by law (e.g. employment contract, purchase order). Legal norms that require a handwritten signature can be found in consumer business (B2C), e.g. in tenancy law or consumer credit. Assignments of claims (assignments) and certain corporate law transactions also require the written form. In addition, formal requirements can be regulated in the contracts themselves (so-called contractual written form reservations), which is often the case with written contracts.

With an FES, a form invalidation arises in these cases. The contract did not come about and has no legal effect.

Qualified electronic signature (QES)

The qualified electronic signature (QES) is the counterpart to the handwritten signature. It offers legal certainty with regard to formal requirements, because it is explicitly “on a par with a handwritten signature” [3] and meets all legal formal requirements. Anyone who signs with a QES does not have to worry that a contract has not been concluded due to a lack of formal requirements.

Compliance with the formal requirements does not say anything about the evidential value of the document. Neither the ZPO (Swiss code of civil procedure) nor the ZertES (Swiss digital signature law) contain any special guildelines regarding the evidential value of electronic signatures. If the authenticity of the document or the signature is disputed, it can be assumed, according to the general principles of evidence assessment and teaching, that the qualified electronic signature has a higher (if not full) evidential value. The Federal Administration’s Validator Service can be used to check whether a document has a qualified electronic signature equivalent to a handwritten signature and when the document was signed (qualified time stamp).

In order to achieve this high level of security, however, the legislator makes extensive requirements (ZertES; VZertES):

• The checksums must be signed using certificates from providers recognized in Switzerland. [4] The certificates of numerous foreign providers (eg Adobe Sign, DocuSign) are generally not legally valid in Switzerland. [5]
• Anyone who wants to sign with QES must also be personally identified in advance at a verified registration office and receive secure means of access with which they can release (i.e. sign) a signature in the future.

There is an exception for identification for financial intermediaries (e.g. banks): A QES can also be issued online using video identification. Here it is legally argued that identification takes place via video chat “among those present”. However, the signature is only valid between the parties. Reusability in other business relationships is excluded.

In typical implementations, the user goes through a video interview and approves the signature using an SMS code. In this way, contracts with great evidential value can be concluded at a distance. The disadvantage compared to the simple methods is that the identification and signature are expensive (~ 20 CHF) and that the hurdle for the user is quite substantial. It takes 10 to 15 minutes to complete the process.

As attractive as the advantages of QES are, their widespread use is unfortunately not very common today. A negligible proportion of the population has the option of permanently using a qualified signature. The ad-hoc method via video identification is reserved for financial intermediaries and is also time-consuming and expensive.

Summary

In summary, the status quo is as follows:

• Docusign and similar processes have at most a ceremonial value.
• Qualified procedures (QES) are legally resilient, but time-consuming and expensive for users.
• Advanced procedures (FES) are a compromise and their usefulness needs to be assessed case by case. They cannot be used for all types of contracts.

The optimal solution, which – similar to a handwritten signature – is easy to use for all types of contract, does not yet exist. Digitization only works for a specific application, weighing costs and benefits as well as legal requirements.

Outlook

The central problem for the evidential value of digital signatures is the link to a natural person. The physical registration and video process are tedious and expensive, and pre-registration has only proven to be useful for a few people.

However, there is a silver lining on the horizon. Identification methods based on artificial intelligence (KI or AI) offer “substantial” security, and in combination with manual controls even “high” security. These highly automated processes enable faster and more convenient usage of qualified electronic signatures. The regulators in Switzerland and the EU seem to see this in a similar way. There is well-founded hope that the legal security of qualified signatures can be combined with a user-friendly process in the foreseeable future.

The development remains dynamic and we hope to see significant progress in 2022.

Authors:

Dr. Martin Eckert (Partner MME) linkedin

Dr. Thorsten Hau (CEO fidentity) linkedin

Footnotes:

[1] The Internet protocol HTTPS, which is used when surfing the Internet uses asymetric encryption. The content is encrypted and signed using exactly the same methods.

[2] An attack requires 10 to the power of 64 years of computing time. For comparison: the universe has only existed for 10 to the power of 10 years.

[3] https://www.fedlex.admin.ch/eli/cc/27/317_321_377/de#art_14

[4] The following four providers are currently recognized: Swisscom (Switzerland) AG, QuoVadis Trustlink Switzerland AG, SwissSign AG and the Federal Office for Information Technology and Telecommunications.

[5] Only if the foreign suppliers integrate certificates from suppliers recognized in Switzerland into their products can the corresponding products possibly meet the requirements of a QES under Swiss law.

Press release

fidentity simplifies automated online identification (KYC) via identification documents and a liveness check. With fidentity, AML-compliant onboarding is completely automated and always available. Banks and regulated financial service providers rely on fidentity to manage their AML risks while offering an online experience on par with any neo-bank. With the fresh capital, fidentity will expand its product leadership and invest in further growth in Switzerland and Europe.

The financing round was completed with Spicehaus Swiss Venture Fund as lead investor and several experienced angel investors.

«We are pleased to have reached an important milestone for fidentity with this financing round. Our goal is to make our solution even better known and to show that compliance and an excellent user experience are not mutually exclusive. With Spicehaus we have gained a partner with a lot of experience in our target market! », Says Thorsten Hau, CEO of fidentity. «fidentity combines compliance and technology in a fascinating way to create an extremely customer-friendly solution. We are very happy to support fidentity. ” adds Heidi Kunz, Investment Manager at Spicehaus Partners AG.

Focus on growth in Switzerland and Europe

The potential in Switzerland for modern KYC is still great and the development is very dynamic as established financial service providers continue to digitize their business processes at great speed.

fidentity plans to expand to Europe for 2022. In a first step, the focus is on the countries bordering Switzerland. Thorsten Hau: “Our solution has proven itself a thousand times over in Switzerland and we look forward to soon being present in Europe, too.”

About fidentity

fidentity was founded in 2016 in Bern and has been active in the Swiss market since the beginning of 2017. The fintech company offers financial service providers a web solution for finma-compliant online identification of natural persons. Using state-of-the-art technology, which is completely developed in-house in Switzerland, fidentity resolves the tension between simplicity for the end user, regulatory security, and a flexible integration. The strong growth in the past financial year clearly shows that smooth identification is an essential component in the technology portfolio of financial service providers.

About Spicehaus

Spicehaus Partners AG is a Swiss venture capital investor. Behind Spicehaus are the two founders Teddy Amberg and Daniel Andres. Together they have more than 25 years of experience in institutional business (Partners Group, BNP Paribas). In addition, as entrepreneurs, they founded and helped build companies themselves. Teddy Amberg helped set up the Swiss fintech startup CreditGate24, which is now the largest Swiss peer-to-peer lending platform. Daniel Andres co-founded the trading company dakuro. So far, the two partners have invested in 20 startups and have been involved in some of the largest Swiss exits: MOVU (bought by Baloise) and Bexio (bought by Mobiliar). Spicehaus Partners AG acts as investment advisor for the Spicehaus Swiss Venture Fund. The fund invests in Swiss startups that are driving digitalization.

about fidentity

Managment summary

finma now permits a way to perform digital identification without video or bank transfer. The chosen technology (reading an NFC chip) is technically sound but of limited practical relevance since it is limited to passports.

Background

finma just released a draft update of the current circular on online and video identification. In the circular, finma lays out the procedures that have to be followed to identify a natural person in compliance with the Swiss anti money laundering act. The current draft amends the aspect of the circular concerned with online identification, i.e. the identification process without a video interview. In the current circular, online identification must be combined with a bank transfer. Only then, is an online identification sufficient to open a new bank account (i.e. the person is considered to be fully identified). According to the draft, it is now possible to replace the bank transfer with the scan of an RFID chip of a compliant government issued document. 

Analysis

From a technical standpoint this is a very sound approach, since RFID chips on most current passports (not all) are as secure as the chip on a payment card. It is possible to verify that the chip was issued by a government and that the information on it has not been changed. This verification is cryptographically sound, i.e. there is no reasonable way to fake the chip or the data on it. On the downside, there are several practical hurdles to using this technology for onboarding purposes:

1. Swiss ID cards don’t have a chip. Passports do, but in our experience, they are used in around 1% of the onboarding cases.
2. To read the data from the chip, reading the machine readable zone (MRZ) of the document beforehand is necessary because the password to access the chip is encoded in the MRZ. So there is always an additional step for the user.
3. National ID cards of other countries are less standardized than travel passports. For example, German ID cards (the „Perso“), which are as widely used as the Swiss ID cards, require an additional key to access the data which is in the visual zone of the document.
4. Reading the chip data is only possible with a native app on the device, requiring the user to install an app.
5. As of today, signature law has not been updated and therefore qualified signatures (required for consumer credit cases) are still not possible.

Almost as an aside, the notes which accompany the draft contain another important clarification: Declarations of beneficial ownership do not require a hand written signature. In digital terms this means that there is no requirement for a qualified signature (which in turn would have required video ident or personal presence per current law). This is relevant in so far, as it opens up many transactions to video-free identification procedures, especially in the b2b domain, where beneficial ownership is often a crucial point to be established. 

Outlook

In summary, the update is of limited immediate relevance for identification and onboarding scenarios in the financial services industry. However, looking into the future, there is considerable potential in this approach:

1. Mid- to long-term, the Swiss ID card will get an NFC chip (not yet in 2021 but probably some time before 2025) and with 10% yearly renewal rate, every Swiss citizen should have an NFC-capable document in their wallet by 2035.
2. With a change in the digital signature legislation, allowing qualified signatures in combination NFC would make video obsolete and could make digital signatures much more usable.
3. Moving from probabilistic to (almost) deterministic security features is a paradigm shift with substantial long term impact on the digital identification landscape.

 Links: finma information on the draft

about fidentity

fidentity provides software for compliant digital customer identification according to finma rules. The user just takes a selfie and scans their ID document. This can take place on any cell phone in the standard browser without app. Using artificial intelligence (AI), fidentity checks the authenticity of the documents and extracts all data. The identification is completed in real time and all relevant documentation is provided to the financial intermediary in real time.
fidentity is audited according to the ISAE300 standard.

fidentity – Compliant Onboarding – Fast and Convenient