An e-Signature Service That Does it Right.
Whether you're developing a full-featured Document Management Software, Self-Service portal or any kind of e-service - ISIGN has all the features you'd need with robust APIs and low integration cost.
ISIGN APIs and Gateway.
ISIGN offers robust RESTful APIs for document signing, validation, archiving and user identification. The ISIGN Gateway is an embeddable document signing component with a user-interface.
eIDAS Compliant Solution.
ISIGN was developed from the ground up according to all the technical requirements of eIDAS regulation. It works with the EU member countries' eID, Mobile ID and various PKI based infrastructures.
ISIGN fully supports Lithuanian, Latvian, Estonian, Finnish, Icelandic, Belgian, Portuguese and Spanish eID providers. More countries to follow shortly.
ISIGN provides the ability to sign documents, identify and authenticate users with Mobile ID using providers listed bellow. More are coming soon.
ISIGN provides the ability to use Smart-ID for document signing and identification in e-services. Smart-ID is the next generation solution for managing e-identities. Smart-ID works with mobile phones and tablets and doesn't require a specially issued SIM-card.
ISIGN allows you to provide e-services to e-residents. e-Residency enables secure and convenient digital services that facilitate credibility and trust online. e-Residents receive the e-Resident ID card which provides the ability to use it for document signing and secure identification.
Certified and Fully Insured.
Our services and operations are compliant and certified according to ISO/IEC 27001 standard with the scope of "online e-signing and e-identification services and custom software development, delivery and provision".
Moreover, we have insured our liabilities on professional indemnity, privacy breach and cyber attacks for up to €1M. Learn more here.
Service Availability and SLA.
99.95% monthly uptime guaranteed. You can find historical data here.
E-Signing Web Services.
ISIGN makes it easy to provide document signing functionality in your application. ISIGN offers RESTful APIs for document signing, archiving, timestamping and validation.
Implement e-signing functionality in the systems you already use.
Supported document formatsISIGN supports international document formats - PDF documents and ASiC containers. In addition, it fully supports all national Estonian, Latvian, Lithuanian document formats (BDoc, DigiDoc, EDoc, ADoc, PDF-LT).
Mobile ID signingISIGN provides the ability to sign documents, identify and authenticate users using Mobile ID.
Signature typesISIGN supports Qualified Electronic Signatures (QES) and Advanced Electronic Signatures (AES). ISIGN works with all qualified Certificate Authorities listed in the European Union Trusted Service List.
Smart card signingOur service provides the ability to use a cryptographic USB token or a smart card for document signing. The ISIGN solution supports Google Chrome, Mozilla Firefox, Microsoft Internet Explorer and Safari browsers, and works on Windows, macOS and Linux operating systems.
Qualified time-stampsISIGN offers the ability to use qualified time-stamps in all document signings in order to ensure security against forgery and backdating.
Batch signing capabilityBatch signing allows you to sign multiple documents with one PIN code entry.
Validation serviceValidation service allows you to verify electronically signed documents. It checks whether the document meets the standards for signature formats, certificate validation, certificate representation, associated signature containers and more.
Long-term preservationISIGN provides the ability to guarantee the trustworthiness of a qualified electronic signature or qualified electronic seal through time.
Support of electronic sealISIGN supports the use of electronic seals to ensure the document's origin and integrity.
Hash signingHash signing provides a way to sign data without it leaving the client's infrastructure.
Your in-house development team or any integration service provider can easily integrate ISIGN e-Signing web services into your information system.
e-Identification Web Services.
With ISIGN's API you can easily identify and authorise people in your application using Mobile ID, ID card or e-Residency card. Identification schemes are based on real IDs, which are accredited and controlled by the governments.
On-board your customers onlineISIGN provides companies the ability to on-board customers using their electronic identity. For financial sector companies operating in the EU, depending on the country, it’s the only legal way to identify a person online.
Identification and authenticationProvide your customers the ability to use their electronic identity in your self-service portals or other information systems. There are no passwords or databases to hack or breach. This reduces the risk of cybercrimes and fraud.
Your in-house development team or any integration service provider can easily integrate ISIGN e-Identification web services into your information system.
It's a full-featured web application for document signing that integrates into your information system.
IntegrationGateway works as an embedded Document Signing Application in your information system. Gateway can be used in a modal window or as an iFrame element.
Everything you need for efficient document signing process implementation in the systems you already use.
All document formatsGateway supports signing and validation of all widespread electronic document formats such as PDF, ASiC, BDoc, EDoc, DigiDoc, ADoc and others.
Mobile ID and ID cardsGateway supports document signing with Mobile ID, ID cards, USB tokens and PKI based smart cards.
Document validationGateway will show whether the document meets the standards for signature formats, associated signature containers, certificate validation and others. Gateway can also prepare a document's validity confirmation sheet for printing.
Document viewerGateway provides the ability to view documents before signing them. Moreover, Gateway can be used for opening and viewing already signed documents.
Batch signingBatch signing allows you to sign documents more efficiently by signing multiple documents with one click and one PIN.
Advanced workflowsGateway allows you to implement advanced workflows for different signing purposes, signing sequences and swapping out signers during an active signing process.
Your in-house development team or any integration service provider can easily integrate ISIGN Gateway into your information system.
Information Security and Service Provision.
Services, business operations, internal systems, development and support processes comply with the ISO/IEC 27001 (information security management) standard, with the certification scope of "online e-signing and e-identification services and custom software development, delivery and provision".
Risk Assessment is carried out on a quarterly basis. RA is based on Open Threat Taxonomy, which was developed with contributions from NATO, International Governments, Banks, Monetary Funds and others in Financial Services, The Center for Internet Security, SANS Institute, Multiple Information Sharing and Analysis Centers (ISAC) and covers threats from numerous vendor industry threat reports, OWASP’s WASCs, NIST’s SP 800-30.
Incident Response Plan
Our Cyber Incident Response Team formed within the company has contingency plans and incident response playbooks. In addition, a proactive vulnerability identification service with automated vulnerability reporting (according to CVSS scores) was implemented.
Cyber Incident Response Team contacts
The Service Provider relies on Amazon Web Services Cloud infrastructure located in two EU regions, with two redundant availability zones for each. The Infrastructure Provider is certified for ISO 27001, ISO 27017, ISO 27018 standards. More information regarding compliance can be found here. Nevertheless, full recovery procedures to another Cloud Infrastructure Provider are in place.
Availability to conduct on-site audits
After signing the NDA, the Service Provider can provide the ability to carry out an on-site audit.
Bug Bounty Program
We introduced our Bug Bounty Program and already paid first bounties in June 2016. Register to our bug bounty program here.
ISIGN has insured liabilities on professional indemnity, privacy breach, cyber attacks up to €1M.
"Estina", Ltd is registered at Lithuanian State Data Protection Inspectorate with an ID number P5693.
Service Disaster Recovery and Business Continuity.
Data integrity is ensured with 100% data mirroring in two separate locations. In case of an emergency, data and data integrity can be restored from backups with automated procedures and RPO of 1 hour.
Uploaded documents are stored only for the duration of their signing. After a document is signed, it is immediately returned to the Service Client and deleted.
All communications are encrypted by TLS, VPN connection and PKI-based encryption is available if required.
Service Provider relies on Amazon Web Services DDOS mitigation capabilities.