What is an Electronic Signature?
An electronic signature (elektronische Signatur) is a digital mechanism used to authenticate the identity of a person and confirm their intent to sign a document or submission in the context of electronic procurement. In German and EU procurement law, electronic signatures play a critical role in ensuring the integrity, authenticity, and non-repudiation of electronically submitted bids and other procurement communications.
The EU eIDAS Regulation distinguishes three levels of electronic signatures, each with increasing security and legal standing. A simple electronic signature can be as basic as a typed name or a scanned handwritten signature. An advanced electronic signature must be uniquely linked to the signatory, capable of identifying the signatory, created using data under the signatory's sole control, and linked to the signed data in such a way that any subsequent change is detectable. A qualified electronic signature is an advanced electronic signature created by a qualified electronic signature creation device, based on a qualified certificate issued by a qualified trust service provider. Only the qualified electronic signature has the same legal effect as a handwritten signature across all EU member states.
In German public procurement, the contracting authority specifies in the tender documents which level of electronic signature is required. Many modern procurement platforms have moved toward platform-based authentication systems that confirm the submitter's identity through secure login mechanisms, reducing the need for separate signature certificates.
Why It Matters for Bidders
Bidders must ensure they possess the correct type of electronic signature or certificate required by each procurement procedure. Failing to use the specified signature level can result in the rejection of an otherwise valid bid. Companies should invest in obtaining qualified electronic signatures from accredited trust service providers if they regularly participate in procurement procedures that require this level of authentication.
Managing electronic signature certificates requires ongoing attention, as certificates have expiration dates and must be renewed in advance. Technical compatibility with different procurement platforms should also be verified, as not all platforms support all types of certificates or signature solutions.
Legal Framework
The legal framework for electronic signatures is established by the EU eIDAS Regulation (EU) No 910/2014 and Germany's Trust Services Act (Vertrauensdienstegesetz, VDG). Section 53 VgV requires electronic submission and specifies signature requirements for above-threshold procurement. The Federal Network Agency (Bundesnetzagentur) oversees qualified trust service providers in Germany.