South Africa recognises two types of electronic signatures under the ECT Act 25 of 2002: a standard electronic signature and an Advanced Electronic Signature (AES). The vast majority of South African business documents — contracts, employment agreements, NDAs, and service agreements — only require a standard e-signature. Understanding the difference helps businesses choose the right tool, avoid unnecessary complexity, and stay compliant with South African law.
What is a standard electronic signature in South Africa?
A standard electronic signature is defined in Section 13(1) of the Electronic Communications and Transactions Act 25 of 2002 (ECT Act) as any method of signing that — having regard to all the relevant circumstances — reliably identifies the person and indicates that person's intention to sign the document.
This is a broad, technology-neutral standard. It includes:
- A drawn or typed signature captured on an e-signature platform
- A scanned handwritten signature pasted into a PDF
- A typed name in an email expressly agreeing to terms
- A clicked “I Accept” or “I Agree” button
- An SMS or OTP-based confirmation of intent to sign
What makes a standard electronic signature reliable — and therefore legally binding — is the combination of context and supporting evidence. A dedicated e-signature platform strengthens reliability by capturing the signer's name, email address, IP address, timestamp, device type, browser fingerprint, and a cryptographic hash of the document at the time of signing. This audit trail is what distinguishes a robust standard e-signature from a simple typed name pasted into a document.
South African courts apply a reasonableness test: the more evidence linking a specific person to a specific act of signing, the harder it is to repudiate. A well-implemented standard electronic signature is highly defensible in the event of a dispute.
What is an Advanced Electronic Signature (AES)?
An Advanced Electronic Signature (AES) is defined in Section 13(3) of the ECT Act. It is a higher-assurance form of electronic signature that uses Public Key Infrastructure (PKI) cryptography to bind the signature to both the signer's verified identity and the specific document being signed.
An AES is issued in the form of a digital certificate tied to a uniquely identified individual. The certificate is cryptographically signed by an accredited certification authority (CA), making it technically impossible to alter the document after signing without invalidating the signature. If even a single character of the document changes after an AES is applied, the signature breaks — providing tamper-evident assurance that goes significantly beyond what a standard e-signature offers.
To obtain an AES in South Africa, the signer must:
- Undergo identity verification (in-person or video-verified) with an accredited CA
- Be issued a PKI digital certificate by that CA
- Use signing software that applies the certificate to the document at signing time
The process is significantly more complex and expensive than using a standard e-signature platform. AES certificates typically cost between R500 and R2,000 or more, depending on validity period and CA fees. The process is designed for high-stakes, regulated, or high-volume signing scenarios where maximum legal assurance is required.
Which documents require an AES in South Africa?
This is the question most South African businesses get wrong. The ECT Act does not require an AES for most business documents. An AES is only required where legislation specifically mandates it — that is, where a statute explicitly requires a “signature required by law” and that statute has not been amended to permit a standard electronic signature.
In practice, the categories of documents requiring an AES in South Africa are limited:
- Long-term leases of immovable property— agreements for the lease of land or buildings exceeding 20 years, which are required to be in writing and signed under the Alienation of Land Act and related property legislation
- Certain financial services compliance documents— specific filings regulated by the Financial Sector Conduct Authority (FSCA) or Prudential Authority where the relevant regulation has not been updated to allow a standard e-signature
- Certain government and regulatory submissions— specific forms or applications filed with government bodies that the relevant legislation requires to bear a certified or attested signature
- Wills and antenuptial contracts— these are excluded entirely from the ECT Act (Section 4) and require physical, witnessed signatures in terms of the Wills Act and Matrimonial Property Act
If you are uncertain whether a specific document you work with legally requires an AES, consult a South African attorney. The question to ask is: “Does a statute specifically require this document to bear a signature, and does that statute require that signature to meet a particular standard?” If the answer is no — or if the statute doesn't exist — a standard electronic signature is sufficient.
Standard vs Advanced Electronic Signature: comparison table
| Feature | Standard E-Signature | Advanced Electronic Signature (AES) |
|---|---|---|
| Legal basis | ECT Act Section 13(1) | ECT Act Section 13(3) |
| Identity verification | Name, IP address, timestamp, document hash | Cryptographic PKI certificate tied to verified identity |
| Who issues | Any e-signature platform | SABS-accredited certification authority only |
| Cost | R0–R99/month (platform subscription) | Typically R500–R2,000+ per certificate |
| Tamper evidence | Audit trail + document hash | PKI cryptographic seal (signature breaks if doc changes) |
| Ease of use | Sign in seconds from any device | Requires prior certificate issuance and compatible software |
| Use case | 90%+ of SA business documents | High-risk legal or specifically regulated documents |
| Required for | NDAs, contracts, HR docs, service agreements, leases <20 yr | Specific regulated documents where legislation mandates it |
Who are the accredited AES providers in South Africa?
In South Africa, an AES must be issued by a certification authority (CA) accredited by the South African Bureau of Standards (SABS) under the ECT Act. As of 2025, the two primary SABS-accredited CAs are:
- LawTrust(lawtrust.co.za) — the most widely used AES provider for South African legal professionals, financial institutions, and corporate signatories. LawTrust offers digital signing certificates, identity verification services, and integration with legal workflow platforms.
- South African Post Office (SAPO)— offers PKI certificate services through its PostSecure division. SAPO is an accredited CA under the SABS and provides digital signature certificates for government and enterprise use cases.
Both LawTrust and SAPO require signer identity verification as part of the certificate issuance process. This verification step is what distinguishes an AES from a standard e-signature: the CA takes responsibility for confirming that the person holding the certificate is who they claim to be.
Some international platforms — such as DocuSign, Adobe Sign, and HelloSign — offer what they call “Advanced” or “Qualified” signatures in European jurisdictions (under eIDAS), but these are not equivalent to a South African AES unless the underlying certificate is issued by a SABS-accredited CA. See the FAQ below for more on DocuSign and AES equivalence.
Does SignZA provide a standard or advanced electronic signature?
SignZA implements a standard electronic signature under Section 13(1) of the ECT Act. It captures the signer's name, IP address, timestamp, device, browser, and a SHA-256 document hash — meeting the reliability test for the overwhelming majority of South African business documents.
Every document signed through SignZA receives a full audit certificate embedded directly into the signed PDF. The certificate records:
- The signer's full name and email address
- The IP address from which the document was signed
- The precise date and time of signing (UTC)
- The device type, operating system, and browser used
- A SHA-256 hash of the document at the moment of signing
- An explicit declaration of intent by the signer
This audit trail is permanently embedded in the signed PDF and forms the evidential basis for the signature's enforceability under the ECT Act. The resulting document is legally valid for employment contracts, NDAs, service agreements, lease agreements, shareholder resolutions, supplier contracts, independent contractor agreements, and the full range of standard South African commercial documents.
If your specific use case requires an AES — for example, certain FSCA filings or long-term immovable property leases — SignZA is not the right tool for those specific documents, and you should consult LawTrust or SAPO for certificate issuance.
For further reading on the legal validity of e-signatures in South Africa, see our guides on whether e-signatures are legally valid in South Africa and the complete guide to the ECT Act 25 of 2002.
Frequently asked questions
Does my NDA need an Advanced Electronic Signature?
No. A Non-Disclosure Agreement (NDA) is a standard commercial contract and does not require an AES under South African law. The ECT Act Section 13(1) standard electronic signature is fully sufficient. An NDA signed through SignZA with a full audit trail is legally binding and enforceable in South African courts. The key requirement is that both parties demonstrate intent to be bound by the agreement — which a standard e-signature captures clearly.
Can I use a standard e-signature for a commercial lease?
Yes — for the vast majority of commercial leases. Standard electronic signatures are valid for commercial and residential lease agreements with a term of less than 20 years. The only lease scenario requiring an AES (or a physical signature) involves immovable property leases exceeding 20 years, which fall under specific property legislation requiring a “signature required by law.” For a 1-year, 2-year, or 5-year commercial lease, a SignZA standard e-signature is fully sufficient.
What is the difference between a digital signature and an AES?
These terms are often confused. A “digital signature” in the technical sense refers specifically to a cryptographic operation using a PKI certificate — which is the same underlying technology as an AES. In everyday usage, however, “digital signature” is used loosely to mean any electronic signature. In South African legal terms, only a PKI-based signature issued by a SABS-accredited CA qualifies as an Advanced Electronic Signature under Section 13(3) of the ECT Act. A drawn or typed signature captured on a platform like SignZA is a standard electronic signature, not a digital signature in the PKI sense — but it is legally binding for virtually all standard business documents.
How do I get an Advanced Electronic Signature in South Africa?
To obtain an AES in South Africa, you need to apply to a SABS-accredited certification authority. The primary options are LawTrust (lawtrust.co.za) and SAPO PostSecure. The process typically involves: (1) submitting an application and identity documents to the CA, (2) undergoing identity verification — either in person at a registration authority or via a secure remote video process, and (3) receiving a digital certificate that you can use with compatible signing software. Costs vary by CA and certificate validity period, but expect to pay R500 to R2,000 or more. The process is designed for organisations or individuals who regularly need to sign specifically regulated documents.
Is a DocuSign signature considered an AES in South Africa?
Not by default. DocuSign offers a standard electronic signature in its standard tiers (comparable to SignZA). It also offers what it calls “Advanced” and “Qualified” signatures, but these are accredited under the EU's eIDAS regulation — not the South African ECT Act. To qualify as an AES under South African law, the underlying certificate must be issued by a SABS-accredited CA (LawTrust or SAPO). DocuSign's EU-accredited signatures do notautomatically meet the South African AES standard. For standard South African business documents, DocuSign's standard tier — like SignZA — is legally sufficient. For documents specifically requiring a South African AES, you need a certificate from a SABS-accredited CA.