Documentation for signers using eSignAnyWhere. It covers explanations of different electronic signature types and guides you through signing your fist document with eSignAnyWhere.
|Table of Contents|
We are distinguishing two types of signers:
- Non-registered Signer: Users that have no account on the eSignAnywhere Platform
- Registered Signer: Users that have an account on the eSignAnywhere Platform
For most of the chapters within the signer guide, there is no big difference. The user experience, when starting from an e-mail invite, is very similar. We will therefore not mention in all the next paragraphs that it applies for both; we will just highlight in case something is available only for one of the signer types.
How to sign a document
In a standard scenario, the use case is very simple:
(1) The signer receives an email with a link to the document.
(2) The signer opens the contained link
(3) The signer gains access to the document, reads the content and performs the signature
(4) The signer performs an explicit Finish operation on the document.
(5) The signer can optionally download the signed document
The signer gets guided through these steps by the signing web application.
Get invited to sign
The eSignAnyWhere Platform is sending an e-mail to invite signers. This e-mails can be configured by the sender organization, including full logo and color adoptions and layout changes. By default, it would look like the following e-mail:
Get access to the document
When clicking the "OPEN DOCUMENT" link or button in the e-mail, the web browser will open and load the web application to collect the signature(s).
Following steps may be shown, depending on how the sender configured the envelope:
- Authentication or Identification
with different methods such as a static access code communicated upfront, an One-Time-Password (OTP) delivered via SMS, Log-In through another platform (the sender's portal application, Log-In with Google or Linkedin, etc.) or even an Identity Provider Platform asking to identify in a video session or other method. When being logged in via another platform, pay attention to the URL to be sure you don't get victim of a phishing mail, and ask the sender via a well-known channel in case you didn't expect a document signature request before you proceed with the authentication.
- Terms & Conditions
A Terms & Conditions ("Agreements") dialog can be displayed before gaining access to the document.
After both steps completed (in case they have been configured), the signer's view will be shown. We call that web application "SignAnyWhere Viewer". The layout is responsive, so that the available area is used dynamically and filled efficiently.
Read, Fill and Sign the document
As a signer, you can now read the entire document content. If the sender requested it, you can (or have to) perform form filling activities. By clicking on the signature field, or by field activation through the step-by-step guiding, the signature task can be executed. Note that the screen below is showing one of the simplest signing experiences the software is offering; we are explaining the different signing experiences in detail in chapter "Signature Types" of this guide.
After the signature has been performed, a representation of the signature will be shown instead of the interactive signature field. Even if the signature does not look like the handwritten signature and may be just a technical representation of the consent, depending on requested or selected signing experience, the signature is embedded into the PDF document according to the "PDF Advanced Electronic Signatures" Standard and based on the ISO 32000. In addition with a process protocol ("audit trail"), or with some signing experience even without that, the sender can give the proof that a document was signed, and also by whom.
Finish the document
If the sender allows the recipients of the envelope to have access again after finishing and closing the envelope, you can open the finished envelope again and see all the signed signature fields and filled out form fields.
Download the document
Optional download of the document
This is the simplest signature type, with the most convinient user experience. The signer has just to click on the signature field to sign. As it is a pure browser-based signing experience, we consider the "ClickToSign" signature type as one of the "HTML5 signature types" - which doesn't make big difference for you as a signer, but requires careful consideration of configuration of the activity to reach the necessary expression of power.
This type allows the signer to draw his signature by mouse, finger or pen. Just an image of his signature is created and embedded into the document. In this case, only the flat picture of the signature and technical parameters of the session are recoeded, but no biometric data. We consider also the "DrawToSign" signature type as one of the "HTML5 signature types".
With this type the signer has to type in his name to sign the signature field. The signature itself is printed in a computer font that may look like someone's handwriting, but actually isn't the signer's handwriting itself. It's the third and last one of this guide which we consider as one of the "HTML5 signature types".
First of all there are two different ways to configure SMS-OTP. The first case (Phone number entered when signing) shows that the recipient can choose the phone number on which he/she wants to get the SMS. The second case (Phone number is already defined) shows that the sender define the phone number on which the recipient gets the sms.
SMS-OTP (Phone number entered when signing)
The SMS-OTP signature field is similar to the Click2Sign but with a different process (Receiving a SMS with a one-time-password). The following figures guide you through the process of the SMS-OTP signature.
After you have opened the envelope and clicked on the signature field, the following window appears:
You can select your country by clicking on the flag. Then you can see how you have to write the phone number.
After entering your phone number you get a sms and the following window appears. There you have to fill in the code which you got via sms. Please have a look at the following figures.
Once you have filled in the code the document is signed.
SMS-OTP (Phone number is already defined)
In this case the recipient has just to accept the sending of the transaction code and automatically receives a SMS on the phone number which has been chosen by the sender.
There are following options available to sign with a biometric signature in eSignAnyWhere:
- SignAnyWhere Viewer (in a Web Browser) in combination with SIGNificant Device Driver (on Convertibles directly on the screen, or on Desktop PC/Notebook with signature pads)
- SignAnyWhere Viewer (in a Web Browser) in combination with the SIGNificant SignOnPhone App for iOS, Android and Windows
- SignAnyWhere App for iOS, Android or Windows (available in App Stores)
- Kiosk SDK (to sign with signature monitor devices)
(1) SignAnyWhere Viewer with SIGNificant Device Driver
The SIGNificant Device Driver is a local service which can be used for integrating signature capturing devices and smartcards into a webpage. It is an Add-On for WebSigningInterface, SignAnyWhere Viewer and SIGNificant Biometric Server for the Enroll&Verify step in Web Applications. Does in addition provide the native access for SmartCard support in WebSigningInterface and SignAnyWhere Viewer.
(2) SignAnyWhere Viewer with SIGNificant SignOnPhone App
The Biometric Signature requires a smartphone or tablet with the SIGNificant SignOnPhone App. The App is used to record the biometric signature. The smartphone or tablet is required because of security reasons to ensure high encryption and security of the biometric data. The App is available for free download in the App-Stores of iOS, Android and Windows.
Web browser: When signing a biometric signature a QR Code is generated and displayed to record the biometric signature on a smartphone or tablet.
SignOnPhone App: The SIGNificant SignOnPhone App. The signer has to select the correct server “eSignAnyWhere (significant.com)”. If you are using eSAW on premise you have to define the endpoint in the settings of the app. To change server settings the signer just selects it from the service provider list.
SignOnPhone App: Scan the QR Code in the app.
SignOnPhone App: Sign the contract in the app. The biometric data are directly encrypted on the device.
(3) SignAnyWhere App
The signer uses a smartphone or tablet with the preinstalled SignAnyWhere App. When the signer opens the SignAnyWhere App Link of the email the app will start automatically and load the document. The biometric signature is natively recorded and encrypted on the tablet or smartphone via the SignAnyWhere App.
The process of signing with a disposable certificate is different to the process of signing with the signature fields above. Therefore this explanation and figures will guide you through the process of signing with this signature type. First the signer receives an email to sign the envelope. After clicking on the signature field a new window appears that you have to accept the general terms and conditions. The next figure shows you how the agreement looks like.
After accepting all three points of the agreement you get a sms OTP. Enter the code which you got via sms and fill it in the field next to OTP. The next figure gives you an overview of the notification you get.
After entering the correct code you have signed the document successfully.
If the recipient gets an envelope with a local certificate signature following window appears after clicking on the signature field:
There, the recipient can choose between his/her certificates and sign with them.
Digital remote Signature
After clicking on the remote signature field following window appears:
After you filled in the user Id you can select the device id and OTP. The following screenshot shows the configuration:
After this configuration you can request a OTP:
Note: This is the configuration if the sender does not fill in the dates for the recipient. If the sender defines the user Id you just have to sign.
Please see the next video for more information about signing a generic signing plugin signature.
If the Signature Disclosure is used, the signer will just get access to the document if he accepts the Signature Disclosure.
When Authentication is used (e.g. SMS, PIN or Windows Live) the signer has to authenticate himself before he gets access to the document. So the content of the document is protected and access is just granted to the signer. If there are more than one authentication methods for the signer available, the signer can select the one he/she prefers.
Multiple signature types
The sender of an envelope can select more than one signature type, so that the signer is able to choose his/her preferred type.
With the batch signing the recipient can decide if he/she wants to sign all signatures within a document at once or each by each.
If the sender selected signature list:
the recipient gets a window like in the last screenshot. If the sender selected “simple batch” the recipient gets the following window by clicking on the signature field:
If the sender selected:
you will see a window like the next figure shows:
There you can see that all required signature fields are pre selected and unchangeable, all other signatures are either preselected or unselected depending on the settings of the sender.
If you allow recipients of an envelope to delegate the signing task (see envelope setting in Step3 or organisation settings), the recipient will see the following options:
After signing and finishing the document you can download several documents which are shown in the next figure.
You can either download:
- The document with the signed signature
- The Audit Trail
- The document and the Audit Trail (zipped and unzipped)
- Or the original document (without signatures)
Document with signature
The Audit Trail
The Audit Trail shows you all information about the document (e. g. information about the signer, the workstep, download information and more)
Following figure shows an example of an Audit Trail:
Document and Audit Trail (zipped and unzipped)
If you download both PDF unzipped you get one PDF containing both documents (e. g. first page is the Audit Trail, second one is the signed document). If you download both PDF zipped you get two PDF one for each document (e. g. one PDF contains the document, one contains the Audit Trail)
Download the original document
If you download this document you get the document without signatures.
For opening the documents we suggest the Adobe Acrobat Reader. Within this program you can download certificates so that you can see if the signatures are valid. The next figure shows you the notification within the program to download the certificates and the other figure shows you a valid signature within a document, opened with Adobe Acrobat Reader.
1.) Download certificates
2.) Valid signature
If the Adobe Reader says the document is not valid signed:
This is typically caused by an outdated Adobe Reader with no update-to-certificates. Please install a new version or perform an update of the certificates (Setting->Trust Manager->Update AATL/EUTL)