Skip to content
Compliance & Regulation

eIDAS, ZertES and GDPR — actaSIGN is compliant

actaSIGN meets the strictest regulatory requirements for electronic signatures in Switzerland and the European Union. Learn how we ensure legal certainty across borders.

Request demo View pricing

2

Frameworks: ZertES (CH) + eIDAS (EU)

GDPR

Full EU data protection compliance

CH · DE · AT · LI

Target markets in the DACH+LI region

Two frameworks — one platform

actaSIGN unifies ZertES (Switzerland) and eIDAS (EU) in a single platform. Sign compliantly — regardless of your location.

ZertES — Swiss Signature Law

  • Federal Act on Certification Services (ZertES)
  • QES is equivalent to handwritten signature (CO Art. 14 para. 2bis)
  • Recognised certification bodies by BAKOM
  • Trust Service Provider: Swisscom Trust Services (KPMG-audited)

eIDAS — EU Regulation

  • Regulation (EU) No. 910/2014 on electronic identification
  • Automatic cross-border recognition within the EU
  • Three signature qualities: EES, AES, QES
  • Swisscom Trust Services on the EU Trust List and Adobe Approved Trust List

Cross-border signing

Sign contracts between Switzerland and the EU seamlessly.

Swisscom on the EU Trust List

Swisscom Trust Services is listed as a trust service provider on the EU Trust List. Qualified signatures from actaSIGN are recognised in all EU member states.

CH–EU mutual recognition status

Formal mutual recognition between ZertES and eIDAS does not yet exist. The Swiss Federal Council mandated negotiations in January 2025.

Practical solution: Dual-listed TSP

By using Swisscom Trust Services — recognised under ZertES and on the EU Trust List — actaSIGN provides practical validity in both jurisdictions.

Swiss data sovereignty

Your data stays in Switzerland — Europe's most secure data location.

Hosting exclusively in Switzerland

All data is processed and stored in an ISO 27001 certified data centre in Switzerland. No AWS, no Azure, no Google Cloud.

GDPR compliant

actaSIGN is fully compliant with the General Data Protection Regulation (GDPR). Swiss data protection provides one of the highest levels of protection worldwide.

revDSG compliant

actaSIGN complies with the revised Swiss Data Protection Act (revDSG), which has been in force since September 2023 and sets comparable standards to the GDPR.

eIDAS 2.0 — future-ready

The revised eIDAS Regulation introduces the EU Digital Identity Wallet by end of 2026. actaSIGN is monitoring developments and preparing for compliance.

  • EU Digital Identity Wallet for all EU citizens by end of 2026
  • Extended requirements for trust service providers
  • actaSIGN and Swisscom Trust Services are actively preparing

FAQ: Compliance and regulation

Is actaSIGN eIDAS compliant?
Yes. actaSIGN supports all three eIDAS signature qualities (EES, AES, QES). Swisscom Trust Services is recognised as a qualified trust service provider under eIDAS and listed on the EU Trust List.
Are Swiss electronic signatures valid in the EU?
There is no formal mutual recognition between ZertES and eIDAS yet. The Swiss Federal Council mandated negotiations in January 2025. However, by using Swisscom Trust Services — listed on the EU Trust List — actaSIGN provides practical validity in both jurisdictions.
Is actaSIGN GDPR compliant?
Yes. All data is processed and stored exclusively in an ISO 27001 certified Swiss data centre. Switzerland offers one of the highest levels of data protection worldwide.
What is the difference between ZertES and eIDAS?
ZertES is the Swiss Federal Act on Certification Services. eIDAS is the EU Regulation (No. 910/2014). Both define three signature levels and recognise QES as equivalent to a handwritten signature.
Where is actaSIGN data stored?
Exclusively in Switzerland, in an ISO 27001 certified data centre. No AWS, no Azure, no Google Cloud.
What is eIDAS 2.0?
The revised eIDAS Regulation introduces the EU Digital Identity Wallet by end of 2026. actaSIGN and Swisscom Trust Services are actively preparing for the new requirements.
Can I use actaSIGN for cross-border contracts?
Yes. Use Swisscom Trust Services — recognised under ZertES and listed on the EU Trust List. This gives your signatures practical validity in both jurisdictions.

Questions about compliance and regulation?

Our team is happy to advise you — personally and without obligation.

Request demo