E-signature and e-archive policies define the basic organizational set up of an enterprise or an organization that introduces the use of electronic signatures and electronic archiving in their business as part of overall paperless business processes.
Electronic signature policy defines organizational and technical aspects of a solution or a service used for electronic signing internally or externally with business parties. Implementation of electronic signature policy is done based on the used electronic signature solution, business processes to which electronic signing applies and legal framework. Electronic signature policy also defines the use and management of resources for electronic signing, security implications and risks. Users of electronic signature solutions must be acquainted with the policy in order to protect enterprise assets and achieve legal compliancy.
Archive policy defines organizational and technical aspects of a solution or a service for trusted electronic archiving. Implementation of archive policies is done in several steps. GAP analysis presents missing technologies and organizational gaps before introducing electronic processes and archiving. Identified gaps are supplemented with appropriate technologies and organizational rules.
Through the process of archive policies implementation, business justification for trusted electronic archiving is also presented. Archive policies also define level of security, backup options and disaster recovery plans. Policies are the ultimate guide how trusted electronic archiving is implemented a performed within a company or organization.
Both, the electronic signature policy and electronic archive policy are used in order to justify and in extreme circumstances to defend against the court of law the use of electronic means for business processes. Policies are the essential building blocks that define the general rules on how to perform paperless business in secure and legal compliant manner.