Skip to main content

Understanding Qualified Electronic Signatures (QES) in SignNow

What is a QES in SignNow? Learn how it enables EU-grade, court-admissible signatures.

Updated over 3 months ago

A Qualified Electronic Signature (QES) is the highest assurance level under eIDAS and is legally equivalent to a handwritten signature across EU member states. In SignNow, a QES combines strong identity verification with a qualified certificate issued by a Qualified Trust Service Provider (QTSP), plus a tamper-evident audit trail.

What is a Qualified Electronic Signature (QES)?

A Qualified Electronic Signature (QES) is an advanced form of electronic signature that:

  • Is uniquely linked to the signatory and capable of identifying them.

  • Ensures the signature is created using a secure, tamper-proof environment.

  • Is backed by a Qualified Certificate (a type of digital certificate), ensuring the authenticity and integrity of the signature.

A QES is equivalent to a handwritten signature in the eyes of the law in many countries, especially those following the EU's eIDAS regulation.

Benefits of Using QES

  1. Highest Legal Standard: A QES is recognized as legally binding in many jurisdictions, such as the European Union.

  2. Enhanced Security: QES ensures the identity of the signer and safeguards the integrity of the signed document.

  3. Audit Trail: Each document signed with a QES includes a timestamp and a certificate that provides a complete audit trail, ensuring accountability.

  4. Compliance: QES meets stringent legal requirements, making it suitable for sensitive documents like contracts, legal agreements, and government forms.

How to Access the QES Feature

📝 QES is available on Corporate (site license) plans only. It integrates with eIDeasy for identity verification and qualified certificates. Enabling specific authentication methods may require additional invoicing, depending on which options your team asks our Support to activate. Contact sales to learn more about volume-based discounts and unlock access.

Step 1

Together with our sales team, you will confirm:

  • Use cases where you need QES (e.g., HR, finance, public sector, cross-border contracting).

  • Countries where recipients must be qualified—based on local legislation.

  • Approved methods/providers that fit your business process.

We record this scope (country legislation, method, eligible resident countries, provider) so your rollout is clear and auditable.

Step 2

SignNow support team will:

  1. Configure your organization with eIDeasy.

  2. Enable the QES setting for your organization.

Once all scoping and billing details are confirmed, provisioning usually takes up to 1–2 business days.

Step 3

Your organization admin completes activation in Organization → Workflow settings by enabling QES and selecting the approved methods/providers.

  • QES setup is per organization; methods are enabled only for the countries and providers we’ve agreed on.

  • ZealID is disabled by default and is enabled only upon explicit request.

  • Your final setup will reflect exactly the authentication methods you approve (and are invoiced for).

How Does QES Work in SignNow?

When using QES in SignNow, the process involves the following steps:

  1. Signer Authentication: The signer must authenticate their identity using methods such as an official ID verification process.

  2. Qualified Certificate: The signer will need to have or obtain a Qualified Certificate issued by a trusted Certificate Authority (CA).

  3. SignNow Integration: Once the identity is verified, and the QES is applied, the document is securely signed and sealed with a digital certificate.

Supported Signature Types Once QES is Enabled


1) SignNow eSignature

SignNow’s standard eSignature covers everyday agreements with a tamper-evident audit trail (timestamps, IPs, signer intent/consent) and document integrity seals. It’s fast to set up, mobile-friendly, and ideal for most business use cases; legality relies on process evidence rather than qualified certificates.

2) PDF-QES

PDF-QES applies a Qualified Electronic Signature directly to the PDF using a qualified certificate issued by a QTSP (via eIDeasy). The certificate and cryptographic seal are embedded in the file, so anyone can verify it in standard PDF readers. Use this when you need eIDAS-level, court-grade assurance with evidence self-contained in the PDF.

3) Hash-based QES

Hash-based QES signs the hash of your document with a qualified certificate instead of embedding the certificate in the file. The original file never leaves your environment; verification pairs the file with QTSP evidence to confirm integrity and signer identity. This is great for very large files or non-PDF formats, and for workflows that prefer external evidence over modifying the file.

4) NOM-151 (Mexico)

NOM-151 adds a time-stamped conservation record (“constancia de conservación”) issued by an authorized provider to prove integrity and a date certain for electronic data/messages in Mexico. It complements eSignatures by anchoring when the content existed and that it hasn’t changed; think “legal timestamp + integrity seal,” not a signature type by itself.

Related Articles
Security, compliance, and data protection
Document History: Tracking Changes and Activity
Understanding Digital Certificates in SignNow
Is SignNow eIDAS compliant?
Workflow Settings
Did this answer your question?