CERTIFICATE POLICY ENTITY STAMP

Transcription

1 CERTIFICATE POLICY ENTITY STAMP Reference: Entity Stamp certificate policy Version no.: v 1.1 Date: 1 July, 2016 IZENPE 2016 This document is the property of IZENPE. This document may only be wholly reproduced

2 TABLE OF CONTENTS 1 DESCRIPCIÓN DEL CERTIFICADO DEFINICIÓN SOPORTE Y NIVEL DE SEGURIDAD ÁMBITO DE USO IDENTIFICACIÓN DEL CERTIFICADO DISPOSICIONES GENERALES CICLO DE VIDA DEL CERTIFICADO VERIFICACIÓN DE LA IDENTIDAD Y SOLICITUD DEL CERTIFICADO DOCUMENTACIÓN REQUERIDA PROCEDIMIENTO DE EMISIÓN Y ENTREGA VERIFICACIÓN DEL CERTIFICADO REVOCACIÓN DEL CERTIFICADO RENOVACIÓN DE CERTIFICADOS IMPORTE PERFILES DE CERTIFICADOS CAMBIOS GESTIÓN DEL CAMBIO CONTROL DE CAMBIOS _VERSIÓN / 8 Version 1.0

3 This document includes the Policy for the Entity Stamp certificate issued by Ziurtapen eta Zerbitzu Enpresa-Empresa de Certificación y Servicios, Izenpe, S.A. (hereinafter, Izenpe). Its purpose is to provide details and complete what is generically defined in Izenpe's Certification Practises Statement for this type of certificate. 1 CERTIFICATE DESCRIPTION 1.1 Definition This certificate is issued deemed as qualified for a legal person as established in European Parliament and Council Regulation (EU) Num. 910/2014 dated 23 July 2014, on electronic identification and trust services for electronic transactions on the domestic market, repealing Directive 1999/93/EC. This certificate is bound to the entity and is to identify it and create electronic stamps. Izenpe issues the Entity Stamp certificate both for entities with a legal personality and to entities without legal personality where, Subscriber is the entity. The key owner is the natural personal applicant deemed legal representative, identified on the certificate. This certificate has a 3-year duration. 1.2 Support and security level This certificate is issued in container media and according to the security levels stipulated by the Commission Regulation on Execution (EU) 2015/1502 dated 8 September, 2015, on setting specifications and minimum technical procedures for security levels for electronic identification methods as stipulated in article 8, section 3, of the European Parliament and Council Regulation (EU) number 910/2014, on electronic identification and trust services for electronic transactions on the domestic market. MEDIA SECURITY LEVEL Container Izenpe certificate container Substantial 1.3 Scope of use The certificate shall be used by the subscriber for services offered by third parties that admit their use, with the conditions and limitations defined in Izenpe's Certification Practises Statement (CPS), posted on Certificate identification In order to identify these certificates, Izenpe has assigned the following object identifier (OID) to the certificate, 3 / 8 Version 1.0

4 CERTIFICATE OID Legal Stamp Certificate General stipulations Obligations concerning identification Izenpe verifies the identity and any other personal circumstances of the certificate subscriber on the certificate that are relevant for their purposes on its own or through the User Entities with which the subscriber subscribes the corresponding legal instrument. Obligations of certificate subscribers The subscriber's obligations are stipulated in section Certificate subscriber obligations in the Certification Practises Statement. 4 / 8 Version 1.0

5 2 CERTIFICATE LIFE CYCLE 2.1 Verification of identity and applying for the certificate Izenpe shall verify the applicant's identity with any of the following methods, In person. The applicant, Shall access and fill out the Application form. Shall pay the amount for the certificate according to the selected payment option. They shall provide the documentation, Izenpe publishes which entities must send the documentation required prior to certificate issue to IZENPE, S.A.- C/ BEATO TOMAS DE ZUMARRAGA, 71-1ª PLANTA 01008VITORIA-GASTEIZ (Spain) on After documentation is validated, the applicant shall go to the Register Authority, with a prior appointment granted by Izenpe. Otherwise, the applicant shall deliver the documentation to the Register Authority, with a prior appointment requested at Identification is as follows, If a Spanish citizen: Valid National ID Card, passport or driver's license. If a citizen of the EU/EEA: Valid Alien ID card and passport/equivalent national identity document in their country. If a non-european citizen: Residency Card. If the applicant's identification cannot be verified by the aforementioned methods, Izenpe shall determine the documentation required for identification in each case. The applicant must either provide a photocopy of the identification documents required or authorise Izenpe to verify the data with the Competent Administration through the application form. The applicant shall complete and sign the Issue application and accept the Terms and conditions of use for the certificate. Legitimising the signature on the Issue application with a notary. Or with an electronic signature certificate. The applicant, Shall accesswww.izenpe.com and sign the Issue application with edni or a qualified natural person certificate issued by Izenpe. Shall accept the Terms and conditions for use of the certificate. Shall pay the amount for the certificate according to the selected payment option. Shall send the required documentation to the address IZENPE, S.A.- C/ BEATO TOMAS DE ZUMARRAGA, 71-1ª PLANTA VITORIA-GASTEIZ (Spain). Izenpe publishes the documentation that each organisation must provide according to its legal status on 5 / 8 Version 1.0

6 2.2 Required documentation ENTITY STAMP Legal representative, Sole, joint administrator or delegate adviser. In the event of company joint administration, - The identity of the joint administrators and their roles must be on the commercial documentation. - In the certificate issue application, there should be a signature from each one of the joint administrators, along with the identification document number (valid National ID Number, passport or driver's license, Alien ID Number). If the company's administration is a Board of Administrators, the President must apply for the certificate issue. 2.3 Issue and delivery procedure Izenpe shall issue and deliver the certificate IZENPE CONTAINER 1. Izenpe shall deliver an empty Izenpe container to the applicant. It shall be sent by to the address indicated in the application 2. The applicant starts the container and generates the key pair and the technical request (csr) 3. The applicant sends the technical request file (csr) to Izenpe 4. Izenpe issues the stamp certificate using the technical request provided by the applicant 5. Izenpe sends the certificate to the address indicated on the issue application 2.4 Certificate verification The signatory shall have 15 working days as of certificate issue to verify proper operation, and if necessary, communicate operational defects to Izenpe. Only if operational defects are due to technical defects (e.g. malfunction of certificate media storage, technical error in certificate, etc.) or errors in the data contained on the certificate applicable to Izenpe, shall Izenpe revoke the certificate and issue a new one, assuming the costs derived. 2.5 Revoking the certificate Revocation application The following my application certificate revocation, Subscriber, the following are authorised to request certificate revocation: The Legal Representative of the subscriber entity, the Personnel Chief or third party authorised by either of the aforementioned. Owner Izenpe, Izenpe's administrators and the Register Entities are authorised to apply for revocation of end entity subscriber certificates. 6 / 8 Version 1.0

7 Procedure The revocation applicant will process the Revocation Application through Izenpe. The certificate can be revoked at any time and in all cases involving loss or theft. The subscriber can revoke the certificate through the following channels: In person, at Izenpe requesting a prior appointment at By post, sending the certificate revocation application signed and validated before a notary. Over the phone, by calling Online, at the website For revoking by telephone and online the following is required for identification: National/Alien Identity Card Number Telephone password Entity Tax ID Number Reasons for revocation This may be viewed in the Certification Practises Statement Renewing certificates Within 60 days before the certificate expires, it may be renewed as follows: Online: the certificate to be renewed must be valid and the Applicant must know the keys. Once the required verification has been carried out, Izenpe shall send the certificate to the applicant at the post address indicated in the Issue application along with passwords in two different shipments. In person: Izenpe shall process renewal according to the planned issue and delivery procedure. 3 COST On an annual basis, Izenpe publishes applicable rates on its website Payment options offered, For electronically signed issue applications, Payment online through a payment gateway Letter of payment to present at the banking entity. Or in-person payment at Izenpe's Registration Authority with bank card. 4 CERTIFICATE PROFILES Izenpe publishes certificate profiles at 7 / 8 Version 1.0

8 5 CHANGES 5.1 Managing changes Modifications to this document shall be approved by Izenpe's Security Committee. Updated versions of specific documentation may be viewed at Change control _for Version 1. 0 Additional requirements Heeding to European Parliament and Council Regulation (EU) Num. 910/2014 dated 23 July 2014, on electronic identification and trust services for electronic transactions on the domestic market, repealing Directive 1999/93/EC. Updated requirements Clarifications Publisher Requirements eliminated 8 / 8 Version 1.0