ESIGN Act vs. eIDAS: The Global Guide to E-Signature Laws (2026)
April 7, 2026 Β· 12 min read
The ESIGN Act (US) and eIDAS (EU) are the two dominant legal frameworks governing electronic signatures globally. Both give e-signatures the same standing as handwritten ones, but they differ significantly in how they define signature levels, what evidence is required for enforceability, and which types of transactions are excluded. In 2026, any business signing contracts across US-EU borders needs to understand both.
This guide covers the structure, requirements, and practical differences of each framework, plus how e-signature laws work in Australia, the UK, Canada, and other major jurisdictions. By the end, you will know exactly what level of signature your contracts need and how to ensure your signing workflow meets those requirements.
The US Framework: ESIGN Act and UETA
The Electronic Signatures in Global and National Commerce (ESIGN) Act was signed into US federal law in June 2000. It applies to interstate and international commerce. The companion state-level law, the Uniform Electronic Transactions Act (UETA), has been adopted in 49 states and the District of Columbia and applies to intrastate transactions.
Together, ESIGN and UETA establish the following core principles:
- Technology neutrality:The law does not prescribe any specific technology. A drawn signature, a typed name, or a cryptographic certificate all qualify. This is fundamentally different from eIDAS's tiered approach.
- Four requirements for validity:
- Intent to sign β the signer must intend to execute the document.
- Consent to electronic transactions β all parties must agree to conduct business electronically.
- Association β the signature must be logically associated with the document.
- Record retention β a usable copy must be accessible to all parties after signing.
- Non-discrimination: A contract cannot be denied legal effect solely because it was signed electronically.
- Consumer consent: If one party is a consumer (not a business), the platform must provide a clear consent process before the first electronic transaction.
What ESIGN excludes: The ESIGN Act explicitly does not apply to wills and testamentary trusts, family law matters (adoption, divorce), court orders, and certain notices related to utility shutoffs, foreclosures, and product recalls. Standard business contracts β NDAs, employment agreements, service contracts, leases β are fully covered.
The EU Framework: eIDAS Regulation
eIDAS (Electronic Identification, Authentication and Trust Services) is an EU regulation that came into force in 2016. Unlike a directive, it applies directly across all EU member states without national implementation. It governs electronic signatures, electronic seals, timestamps, and other trust services.
The defining feature of eIDAS is its three-tier signature hierarchy:
Tier 1: Simple Electronic Signature (SES)
The most common type. Includes any data in electronic form attached to or associated with other data and used for signing purposes. A typed name, scanned signature, or click-to-sign action qualifies. Adequate for most everyday business documents including supplier contracts, service agreements, and HR documents.
Tier 2: Advanced Electronic Signature (AES)
Requires: (1) unique identification of the signer, (2) the signer's ability to control the signing process, (3) the signature linked to signed data so changes are detectable, and (4) creation data used exclusively by the signer. A platform that captures IP address, email verification, timestamps, and generates a document hash satisfies these requirements for most AES use cases. Required for higher-value business contracts and certain financial transactions.
Tier 3: Qualified Electronic Signature (QES)
The highest level, carrying an automatic legal presumption of validity equivalent to a handwritten signature across all EU member states. Requires face-to-face (or equivalent video-based) identity verification through an EU-certified Qualified Trust Service Provider (QTSP), plus use of a Qualified Electronic Signature Creation Device (QESCD). Required for notarial acts, land registry transactions, and certain financial contracts in specific EU jurisdictions.
eIDAS 2.0: In 2024, the EU introduced eIDAS 2.0, which expands the framework to include the EU Digital Identity Wallet. This enables citizens to use a national digital identity for signing QES-level documents without a physical face-to-face verification step. As of 2026, member states are in various stages of implementing the Digital Identity Wallet infrastructure.
Key Differences at a Glance
| Feature | ESIGN Act (US) | eIDAS (EU) |
|---|---|---|
| Structure | Single tier β any electronic mark qualifies | Three tiers β SES, AES, QES |
| Technology requirement | Technology neutral | Specific technical requirements for AES/QES |
| Identity verification | Not mandated β intent is key | Required for AES; certified QTSP for QES |
| Audit trail | Best practice for evidence | Required for AES; mandatory for QES |
| Cross-border validity | US domestic; requires separate foreign law assessment | QES automatically valid across all EU member states |
| Consumer consent | Explicit requirement for B2C transactions | Covered under GDPR for personal data processing |
| Exclusions | Wills, family law, certain consumer notices | Wills; specific national exclusions vary by member state |
E-Signature Laws Beyond the US and EU
For businesses operating in other major jurisdictions, here is a concise summary of the relevant frameworks:
Australia
The Electronic Transactions Act 1999 (federal) and equivalent state acts validate electronic signatures for most commercial contracts. The law follows the ESIGN model β technology neutral, intent-focused. Key exclusions include wills, enduring powers of attorney, and land contracts in some states (though NSW, VIC, and QLD have updated legislation enabling electronic property settlement).
The Australian Securities and Investments Commission (ASIC) has confirmed electronic execution of company documents under the Corporations Act 2001 is valid in most circumstances β relevant for signing shareholder agreements and board resolutions electronically. Read more in our Australian e-signature guide.
United Kingdom
Post-Brexit, the UK maintains the Electronic Communications Act 2000 and the Electronic Signatures Regulations 2002. The UK's approach broadly mirrors eIDAS's tiered system. The Law Commission of England and Wales confirmed in 2019 that electronic signatures are valid for the execution of documents (including deeds) in most circumstances, provided the formalities for the document type are met.
Canada
Canada's Personal Information Protection and Electronic Documents Act (PIPEDA) and the provincial Uniform Electronic Commerce Act (UECA)framework validate electronic signatures for commercial contracts. Quebec's Civil Code has specific requirements for certain documents, making separate legal review advisable for Quebec-specific transactions.
Singapore and Asia-Pacific
Singapore's Electronic Transactions Act closely follows the UNCITRAL Model Law on Electronic Commerce and recognises electronic signatures for most commercial contracts. Japan, South Korea, and India each have their own frameworks with broadly similar outcomes for standard business documents.
Practical Rule of Thumb
For standard B2B contracts (service agreements, NDAs, consulting contracts, employment offers) in any G20 country: a SES-level signature with an audit trail (IP, timestamp, document hash, email verification) is valid and enforceable. Exceptions are notarial documents, wills, and specific financial instruments in certain jurisdictions β these need jurisdiction-specific legal advice regardless of which platform you use.
What Level of Signature Does SignBolt Produce?
SignBolt's signing process creates signatures that qualify as:
- ESIGN Act compliant: Intent is captured through the signing action, consent is recorded at account creation, the signature is logically associated with the document, and the signed PDF is retained and accessible. All four ESIGN requirements are met on every document.
- eIDAS SES (Simple Electronic Signature):Satisfied by SignBolt's standard signing flow. Appropriate for most EU B2B contracts.
- eIDAS AES (Advanced Electronic Signature):SignBolt's audit trail β email verification creating a unique signer link, IP address recording, SHA-256 document hash, and tamper-evident PDF locking β satisfies the technical requirements of AES for most use cases.
- eIDAS QES: SignBolt does not currently produce QES. This tier requires a certified Qualified Trust Service Provider (QTSP). For the vast majority of B2B contracts, QES is not required.
For the specific compliance requirements of different jurisdictions, see our full e-signature compliance guide.
Signing Cross-Border Contracts: Practical Guidance
When a US company signs a contract with an EU company, which law governs? The answer depends on the governing law clause in the contract itself. Here are the most common scenarios:
US company + EU company, US governing law:ESIGN applies. An SES-level signature is valid. The EU party may request an AES for their comfort, which SignBolt's audit trail satisfies.
US company + EU company, EU governing law: eIDAS applies. For most commercial contracts, SES is sufficient. For higher-value contracts or regulated industries, AES is safer.
US company + Australian company:Both ESIGN and Australia's Electronic Transactions Act validate the same type of signature. Any platform with an audit trail is compliant under both.
Best practice for all cross-border contracts:Include a governing law clause specifying the jurisdiction, use an e-signature platform with a full audit trail, and retain the signed PDF and audit certificate together. If there is ever a dispute in a foreign court, the audit trail provides the evidentiary basis for the signature's validity.
Using SignBolt for Global Compliance
SignBolt generates the audit trail required for ESIGN and eIDAS AES compliance on every document β not as an optional extra but as a standard feature on all plans including the free tier. Every signed document receives:
- Signer's IP address at time of signing
- UTC timestamp of each signing event
- SHA-256 hash of the final signed document (tamper-evident)
- Email verification linking the signature to a confirmed identity
- Downloadable audit certificate PDF for record retention
DocuSign vs SignBolt β The Real Cost
- DocuSign Personal: $25/mo = $300/year
- SignBolt Pro: $8/mo = $96/year
- You save $204 every year
Access the SignBolt signing portal free for up to three documents per month. Paid plans start at $4/month. For teams with API integration needs, the Business plan at $24/month includes REST API access β see the developer documentation. New to SignBolt? See how it works or try the free plan with no credit card required.
Compare SignBolt to other e-signature platforms in our alternatives overview, or read about SignBolt vs DocuSign for compliance-focused use cases. For international teams, the detailed feature comparison breaks down how audit trails, pricing, and compliance stack up side by side.
Documents Excluded from E-Signature Laws: A Global Summary
Understanding what cannot be signed electronically is as important as knowing what can be. While the specific exclusions vary by jurisdiction, here is a consolidated overview of the most common excluded document types:
| Document Type | US (ESIGN) | EU (eIDAS) | Australia |
|---|---|---|---|
| Standard commercial contracts | Allowed | Allowed (SES) | Allowed |
| Residential lease agreements | Allowed | Allowed (SES) | Allowed (most states) |
| Employment agreements | Allowed | Allowed (SES) | Allowed |
| Wills and testamentary documents | Excluded | Generally excluded | Excluded |
| Enduring powers of attorney | State-dependent | Member state-dependent | Excluded (most states) |
| Family law financial agreements | Excluded | Generally excluded | Excluded |
| Court documents requiring physical filing | Excluded | Excluded | Court-dependent |
The green rows cover the vast majority of everyday business transactions. If your documents fall into those categories, electronic signing through SignBolt is fully valid in all three major frameworks. For the red rows, consult a solicitor in your jurisdiction before proceeding electronically.
For a specific dive into Australian e-signature compliance, including state-by-state nuances for property transactions, see our comprehensive e-signature compliance guide.
Summary: Which Framework Applies to Your Business?
US domestic contracts: ESIGN Act and UETA. Any platform with an audit trail is compliant.
Contracts with EU parties: eIDAS SES is the minimum for most commercial contracts. eIDAS AES (which SignBolt satisfies) provides stronger legal presumption for higher-value agreements.
Australia, UK, Canada, Singapore: Local Electronic Transactions Acts validate standard e-signatures the same way as ESIGN. Any platform with an audit trail is compliant for most commercial documents.
For all standard business contracts, SignBolt's audit trail satisfies the evidentiary requirements of every major e-signature framework. The only exception is QES, required for a narrow category of transactions in specific EU jurisdictions. For everyone else, SignBolt handles it from $0 per month.
Start signing globally compliant contracts today. Three documents per month free, full audit trail included.
Globally Compliant E-Signatures from $0
ESIGN Act, eIDAS SES & AES, and Australian ETA compliant. Full audit trail on every document.