Back to Blog
Share Share
QES Explained for Non-Lawyers: What Is a Qualified Electronic Signature?
Legal

QES Explained for Non-Lawyers: What Is a Qualified Electronic Signature?

Philipp StuppnikΒ· Co-Founder & IP Strategy
Β·April 21, 2026Β· 6 min read

If you have ever signed a PDF by typing your name into a box, you have used an electronic signature. But if you have ever tried to enforce that signature in a dispute, you may have discovered something uncomfortable: not all electronic signatures are equal, and some carry almost no legal weight at all.

This guide explains what a Qualified Electronic Signature (QES) actually is, why the distinction matters, and how Swiss Trust Layer gives you QES-level legal protection without needing a law degree.

The Three Tiers β€” Explained Simply

Think of electronic signatures like three levels of security at an airport:

Simple Electronic Signature (SES): A waved hand at the entrance. Your scanned signature image, a checkbox, or a name typed into a field. No verification of your identity. No cryptographic protection. If someone disputes the document, there is very little you can prove about who signed it or when.

Advanced Electronic Signature (AES): A boarding pass β€” checked against your ID. The signature is linked to you through a process (like SMS code or email confirmation) and is detectable if the document is altered afterward. Used for most business contracts. Sufficient in many everyday situations, but not legally equivalent to a handwritten signature in a court of law.

Qualified Electronic Signature (QES): A biometric passport check. Your identity is verified by an accredited authority, the signature is cryptographically bound to the document, and the law explicitly states it is equivalent to a handwritten signature. Full stop.

Why "Equivalent to a Handwritten Signature" Matters

This phrase has enormous legal consequences. It means:

A contract signed with a QES cannot be challenged simply because it was signed digitally. A court must treat it the same way it treats a wet-ink signature. The burden of proof for challenging a QES signature is extremely high β€” the challenger must prove the cryptographic process was compromised, not just claim the signature is invalid.

For IP protection, NDAs, licensing agreements, and any document where authenticity and timing matter, this distinction determines whether your document holds up or falls apart under scrutiny.

ZertES: The Swiss Law

In Switzerland, QES is governed by ZertES β€” the Bundesgesetz ΓΌber Zertifizierungsdienste im Bereich der elektronischen Signatur (SR 943.03). Article 2 defines the requirements:

  • The signature must be issued by a ZertES-accredited certification service provider (ZDA)
  • The provider must be accredited by BAKOM (the Federal Office of Communications)
  • The process must use a qualified certificate issued after verified identity checks

Swisscom Trust Services is a BAKOM-accredited ZDA. A signature or timestamp issued through Swisscom carries full ZertES legal status before Swiss courts and regulatory authorities.

eIDAS: The EU Law

For cross-border transactions in the European Union, the relevant framework is eIDAS β€” Regulation (EU) No 910/2014.

Article 25 states: a qualified electronic signature shall have the equivalent legal effect of a handwritten signature. And Article 41 adds something crucial for timestamps specifically: a qualified electronic timestamp carries a legal presumption that the date and time is accurate, and that the data integrity is intact. This means the burden of proof reverses β€” the person challenging the timestamp must prove it is wrong, not the signer prove it is right.

Swisscom Trust Services is listed as a Qualified Trust Service Provider (QTSP) on the EU Trust List. This means Swisscom-issued signatures and timestamps are recognized in all 27 EU member states.

Swiss Trust Layer: QES Without the Complexity

Historically, getting a QES involved complex procurement: finding an accredited provider, completing an identity verification process, installing software, managing certificates. Swiss Trust Layer abstracts all of that.

Here is what the process looks like from your side:

1. Upload your document. Any file format. Nothing leaves your control β€” only the cryptographic hash is processed.

2. The hash is timestamped by Swisscom. Swiss Trust Layer submits the hash to Swisscom Trust Services, which applies a qualified timestamp meeting both ZertES and eIDAS standards.

3. You receive a certificate. A PAdES-compliant document containing your file's hash, the certified timestamp, the Swisscom issuer chain, and your identity. This certificate is the proof.

4. Anyone can verify it. Go to swisstrustlayer.com/validate, upload the original document, and the system confirms: this exact file existed at this exact time. No login required.

When Do You Need QES vs. a Standard Signature?

You do not need QES for everything. But you likely do for:

  • IP ownership documentation (proving when you created something)
  • Licensing agreements with significant commercial value
  • Contracts where one party is in a different legal jurisdiction
  • Documents that may eventually be presented in court
  • Regulated industry documents (financial, healthcare, legal)
  • Co-founder agreements and equity arrangements

For everyday administrative documents, an AES is usually sufficient. For anything where you might one day need to say "this document is real, I signed it on this date, and here is proof" β€” QES is the right standard.

Common Questions

Does QES mean my whole document is encrypted?

No. The document is not encrypted. The signature creates a cryptographic fingerprint (hash) of the document's exact contents, which is then certified. If even one character changes afterward, the hash will not match. The document remains readable.

Is a QES the same in every country?

In the EU (eIDAS) and Switzerland (ZertES), QES carries specific legal definitions. In other countries, the concept is similar but the specific legal presumption varies. Swiss Trust Layer seals are globally recognized through the Berne Convention for copyright purposes.

How much does it cost?

Swiss Trust Layer's Seal Credits Lite starts at CHF 5 per year. Professional and enterprise plans are available for teams and high-volume use cases.

Do I need to understand the cryptography?

No. The platform handles everything. If you can upload a file, you can create a QES-backed timestamp.

The legal landscape for digital documents is maturing fast. The gap between those who can prove their documents' authenticity and those who cannot is growing. QES is how you stay on the right side of that gap. Start at swisstrustlayer.com.

Protect your work with Swiss Trust Layer AG

Seal your intellectual property with a court-proof e-Seal backed by Swisscom Trust Services.

Book a Free Demo