close ad
Databridge V2 with MySQLi support IS Now Available!
open ad
View Menu

Technical Support Forums

Free, outstanding support from WebAssist and your colleagues

rating

Using check box as a method of E Signature.

Thread began 12/16/2019 8:20 am by s.joiner74419001 | Last modified 12/18/2019 12:54 pm by Ray Borduin | 61 views | 5 replies |

s.joiner74419001

Using check box as a method of E Signature.

I'm not sure if this question goes beyond the purpose of this forum but you might be able to give some advice or direction. We have a web form that uses a check box as an action of intent and therefore act as a method of e-signature to the form. My research leads me to believe that in European law a check box is legally Binding ( Slightly different to US but none the less legal ). Further reading has given me doubts with how that data is recorded, basically in a database. This is because even though you can put timestamps to data records, this can be altered or manipulated at a later date.

I have looked at other digital signature services where robust audit trails are integrated in to there system. But trying to integrate one of these into our current system would require out sourcing to advanced API developers.

So I suppose my question is is there a way I can authenticate the data from this form or even create some kind of audit trail to the process.

Thanks in advance.

Steve

Sign in to reply to this post

Ray BorduinWebAssist

I'm no attorney, so I can't speak to the legally binding nature or how it would hold up in court.

Most countries have laws that make digital signatures legally binding. However, there is really no way to do the e-signature yourself and be able to prove it wasn't changed after the fact. You can save it in your database, or even make it a requirement in your web form that can't be avoided, but someone still might argue that it was falsified later and that couldn't really be proven.

The same can be said for a signature really. Unless you have a notary there to stamp a seal and verify the signature, it could be back dated or falsified as well. So, I'd say the level of security you want depends on the value of the items you are verifying. Nobody is going to take you to court for a few hundred dollars to try to claim they didn't provide an e-signature (particularly when they are lying). However, if you are signing deals worth thousands of dollars, I'm sure you could find a lawyer to take that case.

E-signature by a third party is equivalent to having a notary witness the signature. If the nature of your business calls for that level of security, then I'd say integrate it. If you just want something to point to and stand by outside of court then an e-signature is probably enough. You could take the extra step of saving e-Signatures in a separate table with no direct editing capability and save the timestamp and IP address of the signers and even encrypt a key that combines all of those elements into a unique identifier. However that could still technically be faked because it is on your server.

Sign in to reply to this post
Did this help? Tips are appreciated...

s.joiner74419001

I like the sound of saving the signers IP address as well as the timestamp. Not sure how I would do that... any pointers?

Also I thought maybe have an email triggered by form submission to the signer and ourselves as 'Blind Copy' giving statement of intent that confirms their action on the form.

The email could have random string displayed as a reference in the content which would also be sent to database. The email would also be dated which would backup the timestamp in the database.

Many thanks for your input Ray. Much appreciated.

Merry Christmas from the UK.

Sign in to reply to this post

Ray BorduinWebAssist

You can add a column to your database with type: timestamp and default value of "Current timestamp" and then just don't set a value for it and it will do it for you automatically.

The IP address you can find in the bindings in the SERVER variables section.

Sign in to reply to this post
Did this help? Tips are appreciated...

s.joiner74419001

Thanks Ray, so what would be the best data type and length ( if relevant ) for storing IP addresses?

Sign in to reply to this post

Ray BorduinWebAssist

Use varchar(32)

Sign in to reply to this post
Did this help? Tips are appreciated...

Build websites with a little help from your friends

Your friends over here at WebAssist! These Dreamweaver extensions will assist you in building unlimited, custom websites.

Build websites from already-built web applications

These out-of-the-box solutions provide you proven, tested applications that can be up and running now.  Build a store, a gallery, or a web-based email solution.

Want your website pre-built and hosted?

Close Windowclose

Rate your experience or provide feedback on this page

Account or customer service questions?
Please user our contact form.

Need technical support?
Please visit support to ask a question

Content

rating

Layout

rating

Ease of use

rating

security code refresh image

We do not respond to comments submitted from this page directly, but we do read and analyze any feedback and will use it to help make your experience better in the future.

Close Windowclose

We were unable to retrieve the attached file

Close Windowclose

Attach and remove files

add attachmentAdd attachment
Close Windowclose

Enter the URL you would like to link to in your post

Close Windowclose

This is how you use right click RTF editing

Enable right click RTF editing option allows you to add html markup into your tutorial such as images, bulleted lists, files and more...

-- click to close --

Uploading file...