Provide proof of date and integrity
for all your documents
The widespread use of artificial intelligence, the growing volume of data and the increase in fraud are making digital evidence increasingly complex for organisations to establish. Evidency offers an eIDAS qualified timestamping service designed to guarantee the integrity and prior existence of your data.
Ensure the integrity of your data
with Evidency Qualified Timestamping
Continuous and scalable service
A fixed-fee service, easily accessible via an API designed for seamless integration
Irrefutable proof of date
Legally incontestable proof of date provided through our eIDAS qualified solution
Designed for your operational needs
A single platform, adaptable to your business needs and your ecosystem, regardless of your environment
Evidence ready for use
Complete and compliant evidence files, immediately usable in the event of an audit or a dispute
Pricing
based on volume
From 500 euros excluding tax per month
Annual packages suited to large volumes
No set-up fees
No limit on the number of users
Support service included
What is
Qualified Timestamping?
Timestamping is a process that cryptographically associates a real-time date and time with a document, event, or certain digitally performed operations such as sending an email or taking a photo.
This association relies on a timestamping token, which acts as a digital seal, ensuring the integrity of the information by marking the exact moment of its creation or modification.
Qualified Timestamping:
how does it work?
Step 1 – Transmission of hashes
The client’s application connects to Evidency’s qualified timestamping service via a secure API and automatically transmits the hash of the documents to be timestamped, without disclosing their content.
Step 2 – Timestamping and sealing
Evidency associates each hash with an exact date and time to create a timestamp token, which is then sealed by Evidency.
Step 3 – Return of tokens
The timestamp tokens are returned to the client.
Step 4 – Subsequent verification
At any time, the token may be verified to demonstrate that the document existed at the stated time and that it has not been altered since.
A timestamping solution
designed for developers
Evidency’s qualified timestamping service is built on a sandbox, a REST API and dedicated SDKs, enabling straightforward integration into existing environments. These tools support a controlled and progressive implementation, regardless of your technical stack.
Generation of a qualified timestamp token
With a single API call, you generate a timestamp token compliant with RFC 3161 and the eIDAS Regulation, ensuring a reliable date and the integrity of the timestamped data.
Accelerate your development cycles
Code samples are available in the main programming languages to facilitate implementation and reduce development time. The sandbox allows integrations to be tested and debugged securely before deployment to production.
Documentation
Discover how to maximise the use of our APIs and SDKs through our detailed documentation.
eIDAS Qualified Timestamping
The highest level of protection for your data
Integrity, compliance and reliability
Evidency is a Qualified Trust Service Provider (QTSP) within the meaning of the eIDAS Regulation, qualified by ANSSI and subject to regular audits. This qualification ensures a high level of compliance, integrity and legal recognition in France and across Europe.
-
Services compliant with eIDAS requirements and European law
-
Evidence with strong legal standing, recognised throughout the European Union
-
Centralised integration and simplified management of evidentiary material
-
Time source synchronised in real time with UTC (BIPM), ensuring accurate and tamper-proof timestamping
Maintain control over your legal liability
Qualified timestamp tokens issued by Evidency confer a presumption of integrity on data from the moment of its creation, resulting in a reversal of the burden of proof in your favour. Delivered as a SaaS service, the solution automatically associates your digital data or transactions with a precise point in time, enabling the creation of reliable, verifiable and legally enforceable evidence over time.
Our priority:
Trust and security
As a qualified Trust Service Provider (TSP), our solutions meet ANSSI’s regulatory, technical, and security requirements in accordance with eIDAS regulations, as well as the ISO 27001 standard.
Thanks to our centralised approach, we offer seamless integration and simplified digital trust management.
Secure
all your documents
Banks, online sales platforms that must prove their discounts, digital billing systems, lawyers, all need timestamping.
Explore the power of timestamping to guarantee the security of a variety of documents, data, and digital transactions:
Commercial contracts
Financial reports
Electronic communications
Medical files
Online transactions
Certificates and licences
Audit reports
System logs
Electronic evidence
Compliance records
Research data
Are you looking to strengthen the evidential value of your digital documents?
Do you wish to implement fraud-prevention mechanisms?
Evidency’s experts are available to guide you.
FAQ
Timestamping
What is qualified timestamping?
Definition of qualified timestamping: A qualified timestamp is a digital proof mechanism that cryptographically associates an exact date and time with a document or digital event.
This process guarantees the document’s date and integrity, meaning it has not been altered since the timestamp was applied, and ensures its legal validity in accordance with the European eIDAS Regulation.
What are the requirements for an eIDAS qualified timestamp?
Under the eIDAS Regulation, a qualified timestamp must meet the following conditions:
- It must bind the date and time to the data in such a way as to exclude any possibility of undetectable modification, thereby guaranteeing data integrity.
- It must rely on an accurate time source based on Coordinated Universal Time (UTC).
- It must be electronically signed using an advanced electronic signature or sealed with an advanced electronic seal issued by a qualified trust service provider.
Why use a qualified timestamp?
A qualified timestamp makes it possible to:
- Guarantee the certified date of a document: providing proof of when it was created or when an event occurred.
- Guarantee the integrity of digital documents by proving that they have not been altered since their creation.
- Ensure the legal compliance of electronic documents, granting them probative value recognised across the European Union.
- Facilitate audits and inspections by providing a reliable and verifiable trace of digital events.
How does qualified timestamping work under the eIDAS Regulation?
First, a unique identifier is generated using a hashing function. This creates a digital fingerprint (hash), unique and reliable, representing the data.
This fingerprint is then transmitted to the qualified Time Stamping Authority (TSA), such as Evidency, which attaches the exact date and time based on Coordinated Universal Time (UTC). The combination of the fingerprint and time is secured by a timestamp token, a signed certificate containing:
- the digital fingerprint of the data
- the UTC date and time
- the seal of the timestamp token
The seal of the token identifies the electronic timestamp service provider that issued it and guarantees its link to the token. This seal is generated with the TSA’s private key and can be verified with the public key provided to the user via the electronic timestamp certificate, ensuring both data integrity and the legal validity of the timestamped document.
What is the difference between qualified and non-qualified timestamping?
A qualified timestamp provides maximum legal security, is issued by a qualified trust service provider, and enables data integrity to be proven before a court of law.
A simple or non-qualified timestamp only records a date and time, without any guaranteed legal value.
What are the benefits of qualified timestamping for businesses?
Qualified timestamping enables businesses to:
- Prove the date of issue of a document or event
- Protect the integrity of data and digital documents
- Strengthen the legal security of transactions and contracts
- Ensure regulatory compliance with eIDAS standards, required in certain sectors
- Optimise document management with application or enterprise-level certified timestamps, automatable via API
What types of documents can benefit from qualified timestamping?
Any digital document requiring legal proof or traceability can be timestamped, such as contracts, electronic invoices, financial documents, internal reports, legal correspondence, and more.
How to choose a qualified timestamp service provider?
Choosing a Qualified Trust Service Provider (QTSP) is essential to guarantee the legal validity of your electronic documents. Key criteria to consider include:
- eIDAS compliance: the provider must be certified under the European eIDAS Regulation, ensuring the legal recognition of qualified timestamps in all EU Member States.
- Smooth integration: opt for a solution offering a flexible, well-documented API that can easily integrate with existing systems (ERP, CRM, etc.) without disrupting business processes.
- Automation: the ability to automate timestamping via API is vital for handling large volumes of data, reducing human error and improving operational efficiency.
- Secure test environment: ensure the provider offers a dedicated sandbox environment to test the solution safely before deployment, ensuring a smooth roll-out.
- Comprehensive technical documentation: clear and detailed documentation facilitates integration and use of the solution, reducing deployment time and costs.
- Sector adaptability: the provider should offer solutions tailored to the specific needs of your industry, whether finance, healthcare, legal, construction, or others.
- Transparent pricing policy: clear and predictable pricing allows for accurate cost control and avoids unexpected charges.
By following these criteria, you can select a qualified timestamping provider that meets your technical, regulatory, and budgetary needs.
How does qualified timestamping support regulatory compliance for businesses?
Qualified timestamping is an essential tool for Legal Departments (CLOs) in the context of digital transformation. It enables organisations to meet regulatory compliance requirements, particularly in highly regulated sectors such as finance, healthcare, and construction.
It is an effective means of securing digital transactions, reducing legal risks, and reinforcing stakeholders’ trust in the company’s digitised processes.
