Can I use Penneo with my national eID?
Let's check it out!
NemID is a security solution for Danish companies, private citizens. and authorities, commonly used by 5 million Danish individuals for login, online banking, public and private online services, and digital signing. A digital signature made with NemID binds the recipient just as if the document had been signed manually.
Update: The Danish Digitization Agency is currently in the process of replacing NemID with a new Danish electronic identification solution, which will be called MitID. The Ministry of Finance stated their commitment to guaranteeing cooperation between the public sector and Danish banks for correct and rapid implementation of MitID, which will be in production in mid-2021.
NemID will be phased out at the beginning of 2022 when MitID should be operational and available to all. Thereafter, you'll be able to use Penneo with your brand new eID.
BankID is the leading electronic identification in Sweden. It has been developed by several large banks for use by individuals, authorities, and companies. The customer's identification is guaranteed by the bank issuing the BankID.
Citizens can use their BankID for digital identification as well as signing documents electronically. According to Swedish law and within the European Union, BankID is an identification method that ensures Authentication of the signer. Therefore, a digital signature made with a BankID is legally binding.
BankID is a personal and simple electronic ID for secure identification issued by all the banks in Norway. It is actively used by over 4 million Norwegians, all the country’s banks, public digital services, and an increasing number of enterprises in a wide range of sectors.
Norway follows the
Act on implementation of the EU Regulation on electronic identification and trust services for electronic transactions in the internal market (Lov om elektroniske tillitstjenester), which implemented eIDAS in Norway as of 2018 and extended the regulatory framework for secure electronic transactions. The electronic identification using Norwegian BankID meets the official requirements set forth under eIDAS for authentication and binding electronic signatures.
Users can log into their internet bank, safely identify themselves when accessing online services, and sign documents digitally.
itsme® is an advanced mobile authentication solution launched by initiative of the Belgian Mobile ID, a consortium of four leading Belgian banks (Belfius, BNP Paribas Fortis, ING, KBC), and three of the country’s biggest telecoms operators (Orange, Proximus, Telenet) aimed at building a digital ID for all Belgians. In May 2018, a year after its launch, the mobile ID scheme was already processing one million transactions/month.
itsme® can be used to log in and confirm payments in online banking, get access to numerous different online public services, sign digitally, and create online accounts. Users can safely and quickly confirm their identity and approve transactions easily and reliably. The app complies with eIDAS standards and meets PSD2 and GDPR requirements.
Read more about Penneo's solution for Belgian companies.
Finnish Trust Network
The Finnish Trust Network (FTN) is an identity solution that covers the entire Finnish population. It replaced the TUPAS eID as of September 2019, at the end of the transition period with the EU eIDAS Regulation.
The FTN is managed by the Finnish Transport and Communications Agency (Traficom) and consists of a set of banks and mobile companies (Mobiilivarmenne) providing eID schemes in compliance with the Finnish Act on Strong Electronic Identification and Electronic Trust Services.
Any Finnish person or legal entity owning one of the network’s IDs can now use Penneo for online authentication, carry out secure transactions, and sign legally binding agreements.
Read more about Penneo's solution for Finnish companies.
Bosnia and Herzegovina
What signing methods does Penneo offer?
You can choose between three options: eID, Touch signature, and OpenID via your Google account.
Do they have the same legal value?
Not exactly, as not all of them provide the same level of security. All options enable the creation of electronic signatures, but not all electronic signatures are equally valid and enforceable from a legal perspective.
A Touch signature is much safer than a conventional pen-made signature, as both the IP address of the signer and the date and time of the signature are registered and become an integral part of the final digital document. As a result, content integrity and non-alteration are still ensured.
However, it is not as secure as one made with an e-ID, nor it does meet the eIDAS Regulation requirements – therefore, we only recommend using it as a last resort.
An OpenID signature created via a Google account is valid based on the information embedded in the final digital document, namely the signer's full name, IP address, and public certificate. It provides an additional layer of security compared to the touch signature because 2FA is required.
However, this signing method may prove vulnerable to phishing and identity theft, and it may be difficult to establish the authenticity of the binding between a public key and its owner. We only recommend using it when employing an e-ID is not possible.
In addition to preserving the content integrity of the digitally signed document, the signature via eID provides certainty on the signer’s identity. Hence, it enables the creation of a digital signature as defined by the eIDAS Regulation, making an advanced e-signature with the same legal standing as a hand-made signature – in the European Union and around the world.
For the creation of eIDAS-compliant digital signatures, Penneo only allows the use of Digital IDs issued by Trusted Service Providers (TSPs) or Certificate Authorities (CAs) that are included in the EU Trusted List.