Scanned signature is a dubious practice

Date :

On March 13, 2024 (Commercial Chamber, 22-16.487), the Court of Cassation issued a very interesting ruling on the limits of using scanned signatures to attest to the identity and consent of their author.

The process of scanning signatures is valid, but it cannot be considered as a presumed reliable electronic signature within the meaning of Art. 1367 Al.2 of the Civil Code (i.e. a qualified electronic signature within the meaning of the eIDAS Regulation).

In this case, the Court of Cassation considers that in order to grant value to the scanned signature affixed to the contested promise of sale, the signatory would still have had to have previously consented to it, which he had not done.

Our advice is to avoid using scanned signatures as the sole proof of a party's commitment to high-stakes acts. The Court of Cassation rightly notes that qualified electronic signatures should be used to legally secure the signing of an electronic document.

Also read

Date :
Under French law, the definition of an electronic signature (Art. 1367 Al.2 Civil Code) implies a "link" between the act and the signature identifying its author. This notion of link is also found in the definition of the advanced signature in the European eIDAS Regulation (Art. 26) which states that the advanced signature must be "unequivocally linked to the signatory". But the meaning of this link is not obvious. We believe that it can be understood according to three approaches: a conceptual approach that projects onto the electronic signature a characteristic of the handwritten signature; a technical approach defining it via the electronic signature technology; and finally an opportunistic approach linked to the development of the on-the-fly certificate and the notion of evidence file, widely adopted by French judges.
Read more
Date :
Most contracts concluded by banking institutions are now signed electronically. And this has many advantages: speed of execution, optimized process and document management, close customer experience... But identity fraud is on the rise in the field of consumer credit, and in four recent cases, the courts of appeal have pointed out some weaknesses in the current procedures.
Read more
Date :
The NIS2 directive soon to be transposed in France, the CRA regulation on cybersecurity, and the DORA regulation on the cyber resilience of the financial sector are either already in force or in the process of being in force. They organize a cybersecurity ecosystem that almost all SaaS publishers must comply with, at the cost of a fairly considerable compliance effort: complex texts to decode, notification obligations in all directions, documentation, operational implementation, etc. To begin with, we give you what you need to know about their applicability to your service
Read more