A French supplier sends a Dutch client a contract. Both want to e-sign. Both want the signature recognised in Germany, where the deal will be performed. The answer is eIDAS — the EU's harmonised framework for electronic identification and trust services. We're not lawyers — but the structure is straightforward.
What eIDAS is
Regulation (EU) No 910/2014 — eIDAS — came into force in 2014 and was fully applicable from July 2016. It creates a single legal framework for electronic identification and 'trust services' (signatures, seals, timestamps, registered delivery) across all 27 EU member states.
A Belgian-issued qualified signature is automatically recognised in Spain, Italy and Poland. No re-execution, no choice-of-law jousting.
The three tiers of signature
Simple Electronic Signature (SES): data in electronic form, attached to or logically associated with other data, used by the signer to sign. Drawn signatures, typed names, clickwrap all qualify.
Advanced Electronic Signature (AES): uniquely linked to the signatory, capable of identifying them, created using data the signatory alone controls, and linked to the data such that any subsequent change is detectable.
Qualified Electronic Signature (QES): an AES created by a qualified signature creation device and backed by a qualified certificate from a qualified trust service provider. Legally equivalent to a handwritten signature throughout the EU.
Which tier do you actually need?
Most everyday business contracts: SES is enough. NDA, supplier agreement, employment offer, consultancy contract — all fine with SES.
When the law of a member state requires a 'handwritten' signature, QES is the equivalent. That comes up for some employment terminations (Germany), some property transfers, and public sector procurement processes.
AES sits between — used where there are heightened identity and integrity needs but no statutory requirement for QES. Many financial services workflows use AES.
eIDAS 2.0 and the EU Digital Identity Wallet
eIDAS 2.0 (Regulation 2024/1183) extends the framework with the European Digital Identity (EUDI) Wallet — a state-issued mobile wallet for identity, signatures and credentials. Member states must offer it by November 2026.
For most signing today, the original eIDAS framework is what counts. Flint's signing tool produces SES-level signatures suitable for the bulk of routine commercial signing.
FAQ
Does eIDAS apply in the UK?
The UK has its own UK eIDAS (Electronic Identification and Trust Services for Electronic Transactions Regulations 2016), substantively similar. Mutual recognition with EU eIDAS continues for most purposes.
What's the difference between AES and QES?
QES is an AES with two extras: a qualified certificate and a qualified signature creation device. QES is the only tier given automatic legal equivalence to handwritten signatures.
Who issues qualified certificates?
Qualified Trust Service Providers (QTSPs) on the EU Trusted List — names include Buypass, D-Trust, InfoCert and many national-level providers.
Is SES enough for B2B contracts?
Almost always yes, unless the specific contract or applicable national law demands AES or QES. SES underpins most commercial e-signing in Europe.
eIDAS is what makes EU e-signing borderless. Sign in Flint for everyday SES; reach for a qualified provider when the law demands QES.