What Makes an Electronic Signature Legal
Accountants, Blog

What Makes an Electronic Signature Legal?

Last Updated:Apr 7, 2026
10 Min Read
Start using FigsFlow today
  • Professional Proposals
  • Regulatory Compliant LOEs
  • Advanced Pricing Calculator
  • Automation & Integrations
  • Built-in E-Signature
  • AML & ID Verification
Start 30-day Free Trial

Under UK law, three elements make an electronic signature legal:

  • a clear intention to authenticate the document,
  • a demonstrable link between the signature and the document being signed, and
  • sufficient evidence to identify the signatory.

Under Section 7 of the Electronic Communications Act 2000 and Article 25 of the UK eIDAS Regulation, a signature meeting these conditions cannot be denied legal effect.

But not all electronic signatures carry the same weight. The platform you use, the process behind the signature, and the document type all determine whether your setup holds up when it matters.

This guide covers what the law requires, which signature tier suits which document, what your platform must do to be compliant, and where e-signatures cannot be used at all.

What Is an Electronic Signature?

Under Article 3 of the UK eIDAS Regulation, an electronic signature is defined as:

Data in electronic form which is attached to or logically associated with other data in electronic form, and which is used by the signatory to sign.

In plain terms, that covers a wide range of actions. A typed name at the bottom of an email, a drawn signature on a touchscreen, a click on an “I accept” button, and a signature captured through a dedicated e-signature platform all qualify.

The method matters less than whether the signature is connected to the document and intended as a sign of agreement.

What Are the Three Types of Electronic Signature Under UK Law?

UK eIDAS recognises three tiers of electronic signature, each carrying a different level of identity assurance.

Simple electronic signature

It is the baseline. It covers anything that demonstrates intent to sign, including a typed name, a scanned signature, or a checkbox confirmation. It carries the least evidential weight but is legally valid for most everyday business documents. For accounting firms, this covers engagement letters, proposals, and standard client contracts.

Advanced electronic signature

It must meet four conditions as set out in Article 26 of UK eIDAS. It must be:

  • uniquely linked to the signatory,
  • capable of identifying them,
  • created using data under the signatory’s sole control, and
  • linked to the signed document in a way that detects any subsequent changes

A one-time password sent to the signatory’s mobile number is a common example.

Qualified electronic signature

It is the highest tier. It requires a qualified electronic signature creation device and a qualified certificate issued by a qualified trust service provider, as set out in Annex I of UK eIDAS. It carries the same legal effect as a handwritten signature. In practice, QES is rarely required for standard English law transactions and is typically reserved for cross-border dealings or situations demanding the strongest possible identity assurance.

For engagement letters and routine client agreements, a Simple electronic signature is sufficient. You do not need QES.

Are Electronic Signatures Legally Recognised in the UK?

Yes. Electronic signatures are legally recognised in the UK under two overlapping frameworks.

Under Section 7 of the Electronic Communications Act 2000, an electronic signature incorporated into or logically associated with an electronic communication is admissible as evidence in legal proceedings. Under Article 25 of the UK eIDAS Regulation, an electronic signature cannot be denied legal effect solely on the grounds that it exists in electronic form.

The Law Commission’s 2019 report on electronic execution of documents confirmed that the combination of UK eIDAS, the ECA 2000, and case law means an electronic signature is capable of meeting a statutory requirement for a signature, provided an authenticating intention can be demonstrated. Following the UK’s departure from the EU, eIDAS was retained in domestic law through the Electronic Identification and Trust Services for Electronic Transactions (Amendment etc.) (EU Exit) Regulations 2019. The legal framework remains intact.

What Makes an Electronic Signature Valid?

The tier of your signature does not determine whether it is valid. The Law Commission’s 2019 report on electronic execution of documents is clear on this: what matters is whether an authenticating intention can be demonstrated. Courts in England and Wales have upheld typed names in emails and “I accept” buttons as valid signatures. The method is secondary to the intention.

Three things courts look at when assessing validity:

Intention to Sign.

The signatory must have applied their mark with the intention of entering into the agreement. Electronic signature platforms typically present language making clear the signatory is signing the document, which supports this. The surrounding email correspondence also contributes to the evidence of intent.

Association With the Document.

The signature must be incorporated into or logically associated with the specific document being signed. A signature captured through a platform and embedded into the finalised PDF satisfies this condition. A scanned signature image pasted into an email, or a separate signature file sent alongside a document, does not reliably meet it because the connection between the signature and the document cannot be clearly established.

Ability to Identify the Signatory.

There must be sufficient evidence linking the signature to the person who made it. At the Simple tier, this typically means the signatory’s email address and the circumstances of signing. At Advanced tier, additional identity data is built into the signature itself.

The tier of signature determines how easy it is to prove in a dispute. It does not determine whether the signature is valid in the first place.

What Makes an E-signature Platform Actually Compliant?

A non-compliant platform does not automatically void a signed contract. But it leaves you with very little to stand on if a client later says they never agreed to the terms. The platform is not just the delivery mechanism. It is your evidence.

Per Practice Guide 82 published by HM Land Registry, a compliant platform’s audit report should capture the following:

  • Signatory Email Address – The address the document was sent to and accessed from.
  • IP Address – The address of the device used at the point of signing.
  • Date & Time of Signing – Precisely when the signatory opened and signed the document.
  • OTP Method Used – Whether a one-time password was sent and entered as part of the signing process.
  • Fields Completed – A record of what the signatory filled in within the document.
  • A Read-Only Finalised PDF – The completed document must be locked and flagged for any alterations made after signing.

Check that your platform produces all of these. If it doesn’t, you have a gap.

Retain the audit report alongside the signed PDF in the client file. The signed document alone is not enough if a dispute arises.

GDPR-Compliant Platform for E-Signatures

FigsFlow is a secure platform where clients sign engagement letters electronically in seconds. The signed document, audit trail, and client record sit together from day one. No printing.
Try FigsFlow Free →

Which Documents Can Be Signed Electronically?

Most documents an accounting firm handles day to day can be signed electronically using a Simple electronic signature. Under the ECA 2000 and UK eIDAS, commercial contracts carry no restriction on signature method provided the legal conditions for validity are met.

Document TypeSignature Tier Required
Engagement lettersSimple
Client proposalsSimple
Service agreementsSimple
NDAsSimple
Fee amendmentsSimple
Corporate resolutionsSimple (subject to the company's constitutional documents)

The document should be in its final agreed form before it is sent for signature. Sending a draft and amending the content afterwards creates a validity risk.

Which Documents Cannot Be Signed Electronically?

Some documents have specific formality requirements that e-signatures cannot currently satisfy.

  • Statutory declarations must still be made in the physical presence of a solicitor or commissioner of oaths. The declarant’s physical presence remains the standard.
  • Lasting powers of attorney cannot be signed electronically. The Office of the Public Guardian does not accept e-signatures for LPA documents.
  • Wills require wet-ink signatures with physical witnesses present. Electronic execution is not valid under the Wills Act 1837.
  • Certain HMRC submissions are assessed on a case-by-case basis. While HMRC has extended its acceptance of electronic signatures across a number of document types, some specific forms and filings carry restrictions. Check the relevant HMRC guidance for the specific document in question.
  • Land Registry registered dispositions such as transfers, charges, and assents require either Mercury signing or Conveyancer-Certified Electronic Signatures for most dealings, as set out in Practice Guide 82 of HM Land Registry. As of August 2025, HM Land Registry now accepts Qualified Electronic Signatures for charges, transfers, and assents under a pilot scheme, per the GOV.UK announcement published 1 August 2025.

If a client asks whether their property transfer can be signed electronically, the answer depends on the method used. Refer them to their conveyancer.

Dos & Don'ts with Electronic Signatures

E-signatures are only as reliable as the process behind them. A valid signature on a non-compliant platform, or a compliant platform used carelessly, can still leave you exposed. These are the habits that separate a defensible setup from one that creates problems later.

DoDon't
Use a platform that produces a full audit trail with timestamps, IP address, and a finalised PDFAssume a popular platform is compliant just because it's widely used
Send documents directly through the platform rather than as email attachmentsAccept a screenshot or photograph of a signature as a valid e-signature
Retain the signed PDF and audit report together in the client fileUse e-signatures for statutory declarations, LPAs, or wills
Get the engagement letter countersigned before starting workSend draft documents for signature
Use the same platform consistently across your practiceBegin work on the basis that the client will sign later

Conclusion

An electronic signature is legally valid in the UK when the intention to authenticate is clear, and the signature is properly associated with the document. That has been the position since the Electronic Communications Act 2000 and was confirmed by the Law Commission’s 2019 report. The tier you use determines how robust your evidence is, not whether the signature holds up at all.

The platform is where most accounting firms have a genuine gap. A compliant platform produces a complete audit trail. A non-compliant one leaves you relying on intent alone if a client disputes a signature, which is a difficult position when an engagement letter is what stands between you and a scope or fee disagreement.

Practices that get this right now have one less compliance gap to worry about when questions arise later.

Find the Right E-Signature Platform for Your Practice

Not all platforms are built for accounting firms. Our guide breaks down the best e-signature software for UK accountants so you can choose one that's compliant, practical, and built for the way you work.
Read the Guide →

Frequently Asked Questions (FAQs)

Is a typed name in an email a valid electronic signature in the UK?

Yes, provided there is a clear intention to authenticate the document. Courts in England and Wales have upheld this. The evidential weight is lower than a platform-captured signature, so for formal documents like engagement letters, a compliant platform with an audit trail is the stronger option.

Do I need a qualified electronic signature for engagement letters?

No. A Simple electronic signature is sufficient for engagement letters under UK law. Qualified electronic signatures are reserved for situations requiring the highest level of identity assurance. For standard accounting practice documents, a Simple signature on a compliant platform is legally valid.

What happens if a client claims they never signed my engagement letter?

Your audit trail is your evidence. A compliant platform records the signatory’s email address, date and time of signing, IP address, and any OTP used. Without that, you’re relying on email correspondence alone, which is a significantly weaker position.

Does the UK still follow eIDAS rules after Brexit?

Yes. The UK retained eIDAS in domestic law through the Electronic Identification and Trust Services for Electronic Transactions (Amendment etc.) (EU Exit) Regulations 2019. The Simple, Advanced, and Qualified framework remains in force. UK and EU qualified signatures are not automatically recognised in each other’s jurisdictions.

Can I use any e-signature platform for accounting documents?

Not safely. Check that your platform records the signatory email address, IP address, timestamp, and OTP method, and produces a read-only finalised PDF that flags post-signing alterations. A platform that doesn’t capture these leaves you exposed if a signature is ever disputed.

Don’t forget to share this post!

The Future of Proposals, Pricing & Engagement is Here!
Sign Up
Book a Demo
figsflow demo & trial

Related Articles

Log In
Book a Demo
Start 30-day free trial