Digital signing

The short answer to this question is: Yes!

According to Article 3(15) of the Civil Code, a digital signature is just as legally valid as a ''wet'' signature, if the correct method of identifying the signer has been used to sign the correct document and the integrity of the document can be guaranteed.

A legally valid digitally signed document must meet two requirements: the method of identifying the signer must match the type of document being signed and the document must have integrity.

It is always wise to establish the identity of the signer, and when signing some documents, it even relates to the legal validity of the document.   Users of Stiply can purchase additional products to establish the identity of the signer in a more reliable way than through e-mail alone.

Document integrity involves proving when, where and from which device a document is signed. Stiply uses so-called hash codes, and this can be found on the proof document that is sent along when all required signatures have been placed on the document. This hash code is unique and can prove that the signed parties reached an agreement at a specific time and place. Thus, when the authentication/identification requirements are met, a digitally signed document via Stiply is legally valid!

Within Stiply, it is possible to choose an additional authentication method in three ways. The first is SMS, where a signer must enter a code sent via SMS in addition to an email.

The second way is via iDIN, this is a very reliable method because the signer has to log in with his or her bank details. This makes it very likely that this person is actually the person from whom a signature is requested, because you don't share your bank details just like that!

The third and final way is through PiM, the personal identification manager developed by KPN. By downloading the app, filling it with data and scanning unique QR codes of companies you want to share this data with, the identity of the signer is reliably established.

Stiply's software allows for both a simple electronic signature (SES) and an advanced electronic signature (AES).

A qualified electronic signature is currently not widely offered (only a select professional group). Once every citizen can provide a qualified electronic signature, Stiply will implement this technique as well.

Having a document digitally signed with Stiply is definitely secure. At Stiply, we store as little data as possible because we adhere to the privacy-by-design and by default principle. Stiply is a signing solution and not an archive, which means that three days after a signing request is completed, the file is deleted from our servers. We also do a pen test every year where an ethical hacker tries to get into the platform, fortunately this has not succeeded since 2016!

Website visitor data is only processed when a trial account is created. What we do with customer data is stated in our processing agreement. Stiply processes personal data on behalf of customers, for example when preparing a proof document. Naturally, we handle this data with care. The processing agreement is drawn up in accordance with legal requirements (AVG).  We also ask customers to agree to our General Terms and Conditions.

Stiply's servers are located in Frankfurt, and these are AWS servers. Also, the cloud platform that Stiply uses is certified to ISO9001 and ISO27001. Stiply's mail servers are also located in Europe.

Yes, Stiply values quality immensely. In 2022, Stiply has achieved 3 ISO certifications:

- ISO 9001 (quality management)
- ISO 27001 (information security)
- ISO 27017 (cloud environment management and security)