Back to Blog
Share Share
ZertES vs eIDAS: What Swiss Businesses Need to Know in 2026
Legal

ZertES vs eIDAS: What Swiss Businesses Need to Know in 2026

Swiss Trust Layer Team· Compliance & Legal
·May 15, 2026· 9 min read

If your business operates in Switzerland or across the EU, you will encounter two names repeatedly in any conversation about legally binding digital signatures: ZertES and eIDAS. Both govern when a digital signature carries the same legal force as a handwritten one. But they apply in different jurisdictions, are issued by different authorities, and have different implications for court admissibility and cross-border recognition.

For Swiss businesses with EU clients — or EU businesses with Swiss operations — understanding which standard applies is not a compliance detail. It is a legal risk question. This guide cuts through the regulation to give you a practical answer.

What is ZertES?

ZertES is Switzerland's federal law governing certification services for digital signatures: the Bundesgesetz über Zertifizierungsdienste im Bereich der elektronischen Signatur, codified at fedlex.admin.ch (SR 943.03).

Its core provision — Article 2 — defines what constitutes a Qualified Electronic Signature (QES) in Switzerland and sets out the conditions under which that signature carries the same legal weight as a handwritten one under Swiss law.

Swisscom Trust Services is a ZertES-accredited certification service provider (ZDA). A qualified digital signature or timestamp issued through Swisscom's infrastructure is legally equivalent to a wet-ink signature for any purpose under Swiss federal law — including contracts, IP registrations, and regulated financial documents.

Three things make ZertES distinct:

Swiss-only jurisdiction. ZertES applies exclusively to Swiss law and proceedings before Swiss courts, Swiss regulatory bodies, and Swiss administrative processes. A ZertES-accredited signature is the correct standard for any transaction governed by Swiss federal or cantonal law.

BAKOM accreditation. Only providers accredited by the Federal Office of Communications (BAKOM) can issue ZertES-qualified signatures. This accreditation is not self-declared — it requires independent audit and ongoing compliance with strict technical and organisational standards.

Data sovereignty alignment. ZertES workflows commonly operate with data stored within Switzerland, aligning naturally with the nFADP (new Federal Act on Data Protection, in force September 2023) and its data residency implications.

Swiss Trust Layer issues seals via Swisscom Trust Services, giving every sealed document ZertES-compliant standing under Swiss law.

What is eIDAS?

eIDAS — Regulation (EU) No 910/2014 — is the EU framework for electronic identification, authentication, and trust services. It applies across all 27 EU member states and creates uniform rules for when digital signatures are legally recognised.

The regulation creates three signature tiers: Simple (SES), Advanced (AES), and Qualified (QES). Only the Qualified tier — issued by a Qualified Trust Service Provider (QTSP) on the EU Trust List — is legally equivalent to a handwritten signature in all EU member states.

For businesses, the most important provision is eIDAS Article 41, which specifically addresses qualified electronic timestamps:

A qualified electronic timestamp carries a legal presumption that the date and time it indicates is accurate. It also carries a legal presumption that the integrity of the data to which the timestamp relates is intact.

This presumption is rebuttable — but the challenger must rebut it. The signer does not need to prove the timestamp is correct. The opposing party must prove it is wrong. In practice, a qualified timestamp from an EU Trust List QTSP is extremely difficult to challenge successfully in civil or commercial proceedings.

Swisscom Trust Services operates as a QTSP under eIDAS. Swisscom is on the EU Trust List. This means seals issued via Swisscom carry EU legal presumption in all 27 member states — regardless of where the document originated.

The Jurisdiction Question: Which Standard Applies?

The answer depends on the governing law of the transaction and the forum where a dispute might be heard.

Choose ZertES when:

  • Your documents are governed by Swiss law
  • Your counterparties are Swiss entities
  • Disputes would be heard before Swiss courts or arbitration panels
  • You are submitting to Swiss regulatory bodies (FINMA, IGE, METAS, cantonal authorities)
  • Your employment contracts, lease agreements, or supplier contracts are Swiss-law governed

Choose eIDAS when:

  • Your counterparties are in EU member states
  • Documents may be presented before EU courts or administrative bodies
  • You are operating in regulated EU markets (financial services, healthcare, legal)
  • Cross-border EU-27 recognition is needed

Choose both when:

  • Your business spans Switzerland and the EU — which is the case for most Swiss SMEs and any multinational with Swiss operations
  • IP documentation that may be used in either Swiss or EU court proceedings
  • Contracts with both Swiss and EU counterparties

The good news: you do not need to choose between them operationally. Swisscom Trust Services holds both ZertES accreditation and eIDAS QTSP status simultaneously. Every seal issued through Swiss Trust Layer satisfies both standards with a single document, a single workflow, and a single certificate.

Practical Scenarios

Scenario 1 — Swiss startup signing a licence agreement with a German SaaS company. The contract is governed by Swiss law (ZertES applies) but will be stored and potentially presented in a German company's legal records (eIDAS recognition helpful). A Swisscom-anchored seal covers both.

Scenario 2 — Architecture firm in Zurich submitting a competition entry to a French client. The concept drawings need to be sealed before submission to prove prior art and protect the design. The seal should be recognisable by French and Swiss courts. A Swiss Trust Layer seal delivers both.

Scenario 3 — Healthcare provider in Basel sealing patient discharge summaries for cross-border patient records. Swiss nFADP and EU GDPR both apply. Swisscom infrastructure within Switzerland satisfies nFADP; eIDAS QTSP status satisfies EU recognition requirements.

How to Get Started

Swiss Trust Layer handles the underlying compliance complexity transparently:

  1. Upload any document at swisstrustlayer.com. Any file format is supported.
  1. A SHA-256 cryptographic hash is computed. Your file content is never transmitted or stored.
  1. The hash is submitted to Swisscom Trust Services, which issues a qualified timestamp satisfying both ZertES and eIDAS.
  1. You receive a PAdES-compliant certificate: hash, timestamp, Swisscom issuer chain, your identity.
  1. Anyone can verify the seal at swisstrustlayer.com/validate — without login, without contacting Swiss Trust Layer.

The first sealed document takes under two minutes. Seal Credits Lite starts at CHF 5 per year.

One document. Two jurisdictions. Full legal coverage. Start at swisstrustlayer.com.

Protect your work with Swiss Trust Layer AG

Seal your intellectual property with a court-proof e-Seal backed by Swisscom Trust Services.

Book a Free Demo