Electronic Signatures: Everything Your Firm Needs to Understand Before Signing a Form

Not all electronic signatures are created equal. An "X" typed in a form field, a finger drawing on an iPad, a signature image pasted into a PDF, and an AATL-certified digital signature validated by Adobe are all "electronic signatures." But their legal value, security, and acceptability by insurers and distributors are radically different.

If you're a financial advisor in Quebec, you sign and have clients sign dozens of documents every week: insurance proposals, investment forms, beneficiary changes, account openings. Understanding what you're signing and how you're signing it isn't a technical detail. It's a matter of compliance, legal value, and client protection.

The Three Levels of Electronic Signatures

Electronic signatures are classified into three levels, from least secure to most secure.

Level 1: Simple Electronic Signature (SES)

This is the most basic form. A name typed on a keyboard, a checked "I agree" box, a finger drawing on a touchscreen, or a signature image inserted into a document. No cryptographic mechanism links the signature to the document. Nothing proves the document wasn't modified after signing.

Simple signatures are legally valid in Quebec (the CCEITQ doesn't prohibit them), but they're easy to contest. Anyone can type your name on a keyboard. Anyone can copy-paste an image of your signature. In case of dispute, the burden of proof falls on the party invoking the signature, and this proof is difficult to establish without additional elements (audit log, IP address, timestamp).

For insurance and investment forms, most distributors and insurers no longer accept this type of signature alone. It's insufficient for financial transactions.

Level 2: Advanced Electronic Signature (AES)

The advanced signature adds security layers. It is uniquely linked to the signer, it allows identification, it is created under the signer's exclusive control, and it detects any subsequent modification to the document.

In practice, an advanced signature typically combines an authentication process (identity verification via email, SMS, security question), a detailed audit log (who signed, when, from which IP address), and an integrity seal on the document.

This is the minimum level that most Canadian insurers accept for online forms. But there's one level above.

Level 3: AATL Digital Signature (The Adobe Standard)

AATL stands for Adobe Approved Trust List. It's a global list of digital certificates approved by Adobe for validating signatures in PDF documents. When a document is signed with an AATL certificate, Adobe Acrobat automatically displays a green checkmark confirming the signature is valid and the document hasn't been modified.

The AATL signature relies on an X.509 digital certificate issued by a Certificate Authority (CA) recognized by Adobe. This certificate contains the cryptographic key that mathematically binds the signature to the document. Any modification, even of a single character, after signing renders the verification invalid.

What makes the AATL signature superior:

Integrity is verifiable by anyone. Anyone can open the PDF in Adobe Acrobat and immediately see whether the signature is valid (green checkmark) or whether the document has been altered (red warning). No specialized software needed, no need to contact the signature provider. Cryptographic timestamping. A timestamp server (TSA, Timestamp Authority) certifies the exact moment of signing. This timestamp is itself cryptographically signed, proving the signature existed at that precise moment. Even if the signer's certificate expires later, the signature's validity at the time of signing remains verifiable indefinitely. Non-repudiation. The signer cannot deny having signed. The digital certificate is linked to their identity, and the cryptographic operation is irreversible. This is the highest level of evidence available for an electronic signature. Long-term validation (LTV). A properly configured AATL signature includes all information needed to validate the signature in 5, 10, or 20 years: the signer's certificate, the certificate chain to the root, proof that the certificate wasn't revoked at the time of signing (OCSP response or CRL), and the timestamp. The document is self-sufficient for its own validation.

PDF vs PDF/A: A Distinction Firms Ignore at Their Peril

The PDF file format itself has a direct impact on the longevity and validity of your signatures.

Standard PDF

A standard PDF file can contain dynamic elements: JavaScript, interactive forms, multimedia content, links to external resources, non-embedded fonts. It's the format most people use daily.

The problem: a standard PDF isn't designed for long-term archiving. Dynamic elements can change behavior depending on the software used to open them. Non-embedded fonts may not display correctly in 10 years. External links can become obsolete. For financial and insurance documents that must be kept for 7 years or more (AMF/CIRO obligations), that's a risk.

PDF/A (Archival)

PDF/A is a subset of the PDF format, standardized by ISO (ISO 19005), specifically designed for long-term archiving of electronic documents. It exists in several versions (PDF/A-1, PDF/A-2, PDF/A-3), each with conformance levels (a, b, u).

The fundamental difference: PDF/A is self-contained. All fonts are embedded. No JavaScript. No external multimedia content. No dependency on external resources. The document contains everything needed to reproduce it faithfully in 5, 10, or 50 years, regardless of the software used to open it.

For financial firms, PDF/A is the ideal format for signed documents requiring long-term retention. It guarantees that the document you open in 7 years will be identical, pixel by pixel, to the one signed today.

PDF/A-2b and PDF/A-3b: The Versions Supporting AATL Signatures

PDF/A-2 and PDF/A-3 versions natively support digital signatures and attached file integration. A document signed with AATL and saved as PDF/A-2b preserves both the archival integrity of the format and the cryptographic validity of the signature.

This is the optimal combination for insurance and investment forms: a self-contained document, verifiable indefinitely, whose signature is automatically validated by Adobe Acrobat.

What Breaks an AATL Signature (And What Too Many Firms Do Without Knowing)

Here's the point that most financial services firms miss: certain common operations irreparably destroy an AATL signature on a document.

Printing and Scanning the Document

This is the most frequent mistake. An advisor receives a form electronically signed with AATL. They print it for a paper file. Later, they scan the paper version to send by email.

The scanned file is a new document. It's a photographic image of the original document. The cryptographic signature is gone. The timestamp is gone. The green checkmark in Adobe is gone. The scanned file has zero digital signature value. It's like photocopying a certified check: the copy is no longer certified.

"Save As" in Another Format

Opening an AATL-signed PDF and saving it as Word (.docx), image (.jpg, .png), or even "flattened" PDF destroys the signature layer. The new file no longer contains the cryptographic data. Even a "Save As" to PDF from certain software can recreate the file without signatures if the software doesn't properly handle digital signatures.

Modifying the Document After Signing

Any modification to the content of an AATL-signed PDF automatically invalidates the signature. That's precisely the purpose of the mechanism: detecting alterations. If someone adds a page, modifies a field, adds a comment, or even changes a single character, Adobe Acrobat will display a warning indicating the document was modified after signing.

Certain modifications are permitted without invalidating the signature (like adding additional signatures in designated fields), but adding content not planned in the document structure breaks it.

Merging with Other PDFs

Taking an AATL-signed PDF and merging it with other documents into a single file (via Adobe Acrobat or another merge tool) destroys the original document's signature. The resulting file is a new document that no longer carries the original cryptographic signature.

Summary: Actions That Destroy the Signature

Destroys the signature: printing and scanning, saving as another format, modifying the content, merging with other files, "flattening" the PDF, opening and resaving with certain software. Preserves the signature: keeping the original PDF file as-is, archiving it in a document management system that doesn't modify files, transmitting it by email or via a portal without converting it.

The golden rule: the original signed PDF file is the legal document. Never modify it. Archive it as-is.

Why Insurers Increasingly Require AATL

Major Canadian insurers and distributors are progressively moving toward requiring AATL signatures on their forms. The reason is threefold.

Verification is instant and automatable. An insurer receiving thousands of forms daily can automatically validate each AATL signature in batch, without human intervention. Adobe Acrobat (or Adobe APIs) verifies the green checkmark programmatically. Forms with simple signatures or signature images require manual verification, costing time and money. Legal value is maximized. In case of a dispute over an insurance policy or investment, an AATL-signed form with cryptographic timestamp and audit log constitutes the strongest available evidence. The document's integrity is mathematically verifiable. The signing time is proven by an independent third party (the timestamp server). The signer's identity is linked to a certificate issued by a recognized authority. Regulatory compliance. The federal Secure Electronic Signature Regulations (SOR/2005-30) define requirements for an electronic signature to be considered "secure": valid digital certificate, reliable timestamp, post-signature integrity verification. AATL signatures meet each of these requirements. In Quebec, section 38 of the CCEITQ confirms that a technology-based document whose integrity is assured has the same legal value as a paper document.

The Trust Chain, Simplified

To understand why all this works, you need to visualize the trust chain of an AATL signature.

Step 1: The Certificate Authority (CA) issues a certificate. An independent, recognized organization (like GlobalSign) verifies the signature provider's identity and issues a digital certificate. This certificate contains a unique cryptographic key. Adobe maintains a list of these approved certificate authorities: that's the AATL list. Step 2: The document is signed. When the signer applies their signature, the signing tool calculates a digital fingerprint (hash) of the entire document using the SHA-256 algorithm. This hash is then encrypted with the certificate's private key. The result is embedded in the PDF file. Step 3: The timestamp is applied. An independent timestamp server (TSA) certifies the exact moment of signing. The timestamp is itself cryptographically signed and embedded in the document. Step 4: Verification. When someone opens the PDF in Adobe Acrobat, the software recalculates the document's hash and compares it to the encrypted hash in the signature. If both match, the document hasn't been modified. Adobe also verifies that the certificate is in its AATL list and wasn't revoked at the time of signing. If everything checks out: green checkmark.

If a single comma was changed after signing, the recalculated hash won't match the original hash, and Adobe will display a warning. This is mathematically impossible to circumvent.

What Your Firm Should Demand from Its Signing Tool

When evaluating an electronic signature tool for your firm, here are the criteria that matter.

AATL certification. The tool must produce signatures validated by Adobe via the AATL list. Ask to see a sample signed document and verify the green checkmark in Adobe Acrobat. Cryptographic timestamping by a recognized TSA. The timestamp must not be a simple text field reading "signed on March 15, 2026 at 2:32 PM." It must be issued by an independent timestamp server whose certificate is itself verifiable. Mandatory two-factor authentication (2FA). The signer must prove their identity through a second factor (SMS, email, security question) in addition to their access to the signing link. Mandatory (not optional) 2FA significantly strengthens non-repudiation. Complete audit log. Every action (document opening, page viewing, signature application, 2FA verification) must be logged with timestamp, IP address, and signer identifier. PDF/A support. The tool should be able to produce documents in PDF/A format for long-term archiving while preserving the AATL signature. Data residency in Canada. For Law 25 compliance and your clients' data protection, signed documents and associated data should be hosted in Canada. [Our vendor evaluation article details why this matters](/blog/quebec-law-25-vendor-compliance-evaluation).

---

*This article is part of a resource series on compliance and technology for financial services firms. See also:*

• *[Quebec Law 25: What Every Financial Advisor Needs to Know in 2026](/blog/quebec-law-25-guide-financial-advisors)*
• *[The 7 Law 25 Obligations Your Firm Must Meet Now](/blog/law-25-obligations-checklist)*
• *[How to Evaluate Whether Your Technology Vendors Are Law 25 Compliant](/blog/quebec-law-25-vendor-compliance-evaluation)*