SecureExchange & A-Trust Digital Signature Integration

Overview

SecureExchange’s integration with A‑Trust enables you to offer your end users fully qualified electronic signatures directly within the SecureExchange application. Leveraging our eAPI, you can flag documents for signing, invoke the A‑Trust signing flow with one click, and return the signed PDF all without any manual printing or scanning.

Key Capabilities

1. API‑Driven Workflow

   • Flag for Signing:
     Send a POST to /api/v1/signature-requests with your external_file_id, external_teamdafe_id, and external_user_id.

   • Seamless Embed:
     A single “Sign Document” click in the end‑user view loads the A‑Trust iframe, no additional UI changes required.

2. Qualified Electronic Signature (QES)

   • Legal Equivalence:
     QES under eIDAS is legally equivalent to a handwritten signature.

   • Audit Trail & Compliance:
     Full traceability with cryptographic hashes; only the document hash is shared with A‑Trust.

3. End‑User Experience

   • Instant Authentication:
     Signers enter their A‑Trust credentials to verify identity.

   • Automatic Signing:
     Upon successful authentication, the signature is applied immediately, and users are redirected back.

   • One‑Minute Turnaround:
     From API call to signed PDF download in under 60 seconds.

4. Security & Privacy

   • All communications occur over TLS.

   • Documents remain on your servers; only hashes are exchanged.

   • A‑Trust handles signature creation and secure storage under their qualified‑trust‑service standards.

Deployment & Availability

• Current Release: eAPI only (no advisor‑portal support yet).

• Geography: Optimized for Austria (A‑Trust’s primary market), but technically EU‑wide under eIDAS standards.