According to the German Anti-Money Laundering Act (GWG), obligated parties must clearly identify their customers or contractual partners within the scope of combating money laundering and due diligence. In the context of this legal requirement, the QES Ident Service supports this identity check and offers a combination procedure of identification and qualified electronic signature according to the EU regulation eIDAS. The QES Ident Service can replace the physical on-site identification of natural persons and enables digital identification based on a German online banking account and proof of a reference transaction.
QES Ident Service
for frictionless identity verification in accordance with the German Anti-Money Laundering Act
How does QES Ident work?
1. Input of personal data
For the purpose of the AML-compliant identity verification, your customer will be redirected from your portal to a special identification URL of our identification partner. After confirming the terms of use, your customer enters his personal information into the web mask: name, residential address, date of birth, place of birth, nationality and mobile number.
2. e-banking login and reference transaction
Your customer selects the banking institution and logs into his German online banking account. Then, he authorises a 10 cent transfer to the identification partner using the transaction authorisation method of his bank.
3. Electronic signature
Your customer signs any document with a qualified electronic signatures, e.g. your application form of opening a bank account. To do so, he receives a one-time code via SMS, which he enters for signature approval. Afterwards, all registration data of your customer including proof of the reference transaction are available to you.
Are you
interested?
Get in contact with an expert
Integration of QES Ident Service
The QES Ident Service with its proof of identification and signature is completely integrated into the customer workflow. It would be conceivable, for example, that the customer shows the person to be identified a document for electronic signature, e.g. a self-disclosure or account opening. The customer then opens an order (1) for a QES Ident with Swisscom and forwards the person to be identified to the service (4, 5, 6).
With the order opening, the customer already transfers the known personal data (1) to the QES Ident Service, which the person can then check and correct again (optionally) in the portal of Swisscom’s identification partner:
- First name and surname,
- Home address,
- Date of birth,
- Place of birth
- and nationality.
All data except the place of birth are checked by a well-known German credit agency and compared with the data from the e-Banking login. The verified person then makes the reference transfer from his or her account in Germany to the account of the identification partner and thus also fulfils the GWG requirement of “immediacy” (here: same session) of the transfer to be made. Likewise, the hash of the document is now also electronically signed in a qualified manner, which the customer also transmitted to Swisscom when placing the order (1). The signed hash is returned to the customer by the identification partner (8). The customer can create a signed document from the signed hash. This ensures that the content of the document cannot be read by either Swisscom or the identification partner.
The customer can now check the permissibility of the signature of Swisscom IT Services Finance S.E. using the EU trust list and the signature certificate or by querying a validator. In addition, the customer receives log data of the reference transfer directly from Swisscom’s identification partner (8). This means that identification has been carried out by checking a qualified electronic signature.
Legally compliant and certified
With the QES Ident Service from Swisscom Trust Services, you are choosing a certified trust service and provider of legally valid electronic signature and identity solutions in accordance with the EU Regulation eIDAS.
EU regulation eIDAS
Timestamp Protocol ETSI EN 319422
DIN-Norm 419.241-1
PDF/A
PAdES
EU Trusted List
