Raw Record Source

{
  "$type": "site.standard.document",
  "bskyPostRef": {
    "cid": "bafyreibtrjjbatr2gl3uipa6kkrqcgyejtaxmyidsvxg4m4n6nwu3f74lu",
    "uri": "at://did:plc:j4nmy4ymoeorm3j6hzbijapg/app.bsky.feed.post/3m5g22dkr34e2"
  },
  "coverImage": {
    "$type": "blob",
    "ref": {
      "$link": "bafkreictveo7eifxcqhf7pdu277nzz4v7yfzp4qgsqnodddmslsjxmig6m"
    },
    "mimeType": "image/jpeg",
    "size": 375489
  },
  "description": "A first-hand look at how eIDAS and digital signatures replace paper rituals with cryptographic trust.",
  "path": "/digital-signature-eidas-experience/",
  "publishedAt": "2025-11-12T06:37:35.000Z",
  "site": "https://hoeijmakers.net",
  "tags": [
    "private limited company",
    "the eIDAS framework",
    "Firm24",
    "SignRequest",
    "EU eIDAS Regulation – official portal",
    "EU Trusted List Browser",
    "Dutch government overview (Rijksoverheid)",
    "One European Company (EU-INC)",
    "Understanding Digital Identity in the EU: eID, eIDAS, and the EUDI Wallet"
  ],
  "textContent": "When we transformed our partnership into a private limited company, I expected paper. A meeting with the notary, wet ink, a stamp. Instead, it all happened in a browser: uploads, video checks, and digital clicks that somehow carried legal force.\n\nOnly later did I realise I had just taken part in the European experiment with _digital trust_ , the eIDAS framework, and that I had signed something without ever touching a pen.\n\n### Quick takeaways\n\n  * Identification and signature are two distinct acts: first _who you are_ , then _what you agree to_.\n  * The signature’s power comes from its cryptographic trail, not its appearance.\n  * Qualified Trust Service Providers (QTSPs) give digital signatures the same legal weight as handwritten ones.\n  * Notaries, intermediaries, and state registries are now connected by secure digital chains.\n  * eIDAS quietly turns European bureaucracy into code — without losing its concern for proof and personhood.\n\n\n\n## 1. A company born in the browser\n\nOur process began at Firm24, an intermediary platform for digital incorporation.\n\nThe first step was a **Know Your Customer** check: we uploaded our identity documents and recorded a short **video in the browser** , confirming that the person on screen matched the ID.\n\nThat was the automated front end of trust, identity established before any signing took place.\n\nOnce the information was verified, the notary drafted the deeds.\nWe reviewed and **signed them digitally** through SignRequest, the familiar on-screen signature that records time, device, and IP address.\n\nAt first, I uploaded a photograph of my real, hand-drawn signature. It looked neat, recognisable, but the system declined it. What it wanted was the clunky version drawn with a mouse: ugly, but traceable. The platform trusted the _event_ , not the _image_.\n\n💡\n\n****Why the ugly signature won****\nThe drawn signature wasn’t trusted because it looked authentic, but because it was __recorded__ authentically. A photo of a handwritten signature is just an image; anyone can reuse it. The clumsy mouse-drawn version, however, is created __within__ the signing system, tied to a timestamp, device, and identity trail. It’s ugly, but cryptographically honest. And that’s what makes it legally strong.\n\nOnly after everything was ready for formalisation did we have a **live WhatsApp call with the notary’s office**.\n\nIt wasn’t another ID check; the notary already had our identification from the Firm24 dossier. The conversation was brief, all it took was a human confirmation that we understood and agreed with the deed before it was officially signed.\n\nShortly after, the notary added their **qualified digital signature** and sent the deed electronically to the **Chamber of Commerce**.\n\nA company was born, entirely in the browser.\n\n## 2. What was really happening\n\nIt felt effortless, almost ordinary, but underneath, each step carried a specific legal and technical meaning:\n\nStage  |  What happened  |  eIDAS layer\n---|---|---\n**Identity check** |  Upload of passport and short verification video through Firm24  |  _Electronic identification_\n**Data transfer** |  Verified dossier sent from Firm24 to the notary  |  _Trusted delivery_\n**Digital signing of drafts** |  We signed deeds through SignRequest  |  _Advanced electronic signature (AES)_\n**Intent confirmation** |  Live WhatsApp call with the notary’s office — confirming understanding and consent, not identity  |  _Authorisation / will formation_\n**Notary’s formal seal** |  Notary applied qualified digital signature through a Certified Trust Service Provider  |  _Qualified electronic signature (QES)_\n**Registration** |  Deed filed electronically with the Chamber of Commerce  |  _Trusted electronic delivery / legal effect_\n\nThe **Firm24 stage** handled identification, proving who we were.\n\nThe **SignRequest stage** captured our consent digitally.\n\nThe **WhatsApp call** reintroduced a brief human moment: not a check of documents, but a confirmation that we truly understood and agreed to the act of incorporation.\n\nFinally, the **notary’s qualified signature** gave the deed its formal, cross-border legal force under eIDAS.\n\n## 3. Trust as infrastructure\n\nWhat struck me is how _invisible_ trust has become.\n\nWe used to rely on rituals: paper, witnesses, stamps. In the digital process, trust is distributed across systems.\n\n  * **Firm24** verified who we were - a human front door.\n  * **The notary** confirmed that we understood and agreed - legal assurance.\n  * **The qualified trust provider** sealed the deed - cryptographic proof.\n  * **The Chamber of Commerce** accepted it - institutional trust.\n\n\n\nOnce that final registration was complete, everything else fell neatly into place.\nOur **bank** immediately recognised the new company and transferred the existing account without complication — no new signatures, no paper.\n\nSetting up **bookkeeping in MoneyBird** was equally seamless, with the company data retrieved directly from the trade register.\n\nEven the **Tax Office** followed automatically, issuing a new VAT number within days.\n\nIt was a glimpse of what a connected trust infrastructure can feel like: every authority drawing from the same verified record, without friction or duplication.\nEach part replaces a physical step with a digital one, but the underlying logic remains: you prove your identity, express intent, and an authorised party validates it.\n\nThe difference is that these steps now happen within seconds, across secure servers rather than across desks.\n\nThe Chamber of Commerce maybe went overboard a bit.\n\n## 4. From mark to mechanism\n\nAt some point I realised that the “signature” had ceased to be a mark altogether.\nIt was now an _event_ : a timestamped record linking identity, intent, and document integrity.\n\nAuthenticity no longer comes from handwriting analysis but from cryptographic linkage.\n\nIt’s the **system** , not the symbol, that carries trust.\n\nThat shift has deep implications. It means that _authority_ can now travel across borders. A Dutch qualified signature is valid in Finland, France, or Portugal.\nIt also means that European digital identity is no longer a convenience but it’s an essential building block of law, commerce, and citizenship.\n\n## 5. Why this matters\n\nEurope’s approach differs from the more laissez-faire systems elsewhere.\neIDAS doesn’t treat signatures as mere digital consent. It roots them in **sovereign identity** and **regulated trust services** , a deliberate attempt to build autonomy at the infrastructure level.\n\nWhen we speak of _digital sovereignty_ , this is what it looks like in practice: individuals and institutions bound by verifiable, portable proofs of identity.\n\nIn a way, the process revealed a cultural shift as much as a technical one.\nThe European state is learning to speak digital, and the notary is its interpreter.\n\n## Closing reflection\n\nThe most consequential signature of my professional life has no visual form.\nIt lives as metadata and mathematics: a timestamp, a certificate chain, a line in a European trust list.\n\nYet it feels reliable, even human, because every layer still asks the same questions that law has always asked: _Who are you? What do you intend? Who witnesses it?_\n\nBureaucracy hasn’t vanished; it has changed medium.\nThe ritual of signing now lives in code and that code, in Europe at least, still begins with identity.\n\n## Further reading\n\n  * EU eIDAS Regulation – official portal\n  * EU Trusted List Browser\n  * Dutch government overview (Rijksoverheid)\n\n\n\n* * *\n\n### Further reading\n\n  * One European Company (EU-INC)\n  * Understanding Digital Identity in the EU: eID, eIDAS, and the EUDI Wallet\n\n",
  "title": "Signing the Future: How a Digital Incorporation Made eIDAS Real",
  "updatedAt": "2026-05-10T08:53:48.356Z"
}