Cryptomathic Launches Mobile Solution for Digital Onboarding at the Branch - Supported by QES

by Cryptomathic on 09. September 2019

New digital portal streamlines banking client onboarding while addressing AML, eIDAS and PSD2 requirements.

In an effort to facilitate digital transformation, reduce operational costs and accelerate customer onboarding, numerous banks and financial institutions consider setting up a fully digital client onboarding solution with a Qualified eSignature service at the end of the onboarding process.

New call-to-actionIn this article, we reveal some of the first screenshots of a digital client onboarding solution, leveraging Cryptomathic’s flagship Signer and Authenticator products. Such a solution will allow new clients to be onboarded seamlessly, securely and much more rapidly than with the existing onboarding methods.

Some organisations opt for remote onboarding and utilise the numerous service providers that emerged in the last decade. This is often at the cost of corporate branding and somewhat dehumanises the client relationship, while also incurring costs in the region of a dozen of EUR per new client, which can quickly add up to annual costs of several million for a large organisation. Furthermore, this raises some question marks with regards to compliance.

A large portion of the clientele will, however, always opt for a physical onboarding where the customer advisor interacts with the client in-person. That said, the onboarding process needs to be transformed to allow for increased efficiency, improved compliance demonstration and to enhance the digital banking business.

Together with a partner, Cryptomathic developed a digital onboarding portal for the financial sector, in combination with a smartphone app that:

  • Allows clients to be digitally onboarded in compliance with AML and eIDAS requirements.
  • Enables documents to be digitally signed with a QES in the same onboarding stream.
  • Provides clients, at the end of the onboarding process, with a persistent strong login solution in compliance with PSD2 SCA requirements.

High level workflow

The following flowchart shows the general steps as part of the onboarding process at the local branch.

High level workflow


Below are the screen views of each step of the onboarding process, from both the client advisor and the client.

Client advisor side

Client side




The client advisor uses the desktop app to invite the client to start the onboarding process and sends a link to the app via e-mail or SMS.

  Phone 14

The client receives an email with a link to install the mobile app. The client installs the app and proceeds to the identity verification stage.

He/she is invited to accept the general terms of conditions for the onboarding process.

  Phone 12

The client captures her ID and the app extracts client data using OCR. The information is sent to the back-end.

  Phone 11

The client takes a selfie.


The client advisor vets the client’s identity and the client data that’s harvested by the app. By doing so, the client advisor acts as an RA agent and KYC officer. 

Note that additional data can be captured as well.


Now the client ID data has been verified, it can be stored in the back-end IdM solution. The back-end generates a shared secret to bind the device app to the client number.

  Phone 13

Using QR technology, the shared secret is immediately retrieved by the client for onboarding.


The client advisor can therefore introduce one of the strong authentication means supported by the bank.

We recommend using the same mobile app to provision an OATH compliant PSKC seed for OCRA based authentication.

  Phone 17

If the strong authentication app is selected, the first t-OTP token can be immediately generated and verified.


The client advisor can carry on and prepare the contructual set of documents that require client sign-off.

The portal includes a workflow engine allowing for multi-party signing & batch signing and manages the invitations to start the signature process.

  Phone 16

The documents awaiting client sign off appear on the app.


The document(s) are rendered in the app using Cryptomathic WYSIWYS technology for strong non-repudation.

The user provides her wilful consent. When using the mobile SCA token, this can be made transparent to the end-user.

At the end of the onboarding process, the document(s) are signed with a Qualified Electronic Signature (QES) and the contract can be executed. The client is also able to use the strong authentication (provided by the app) for future secure login to online services in compliance with PSD2 SCA requirements.

In Summary

Developed in partnership with a long-term partner, Cryptomathic is now able to offer a comprehensive digital onboarding and signing solution including KYC, user registration, strong authentication and signing services. The solution offers an ideal mix to comply with both the anti-money laundering and the trust services legislation across the EU. The solution primarily targets European and Swiss requirements and can be easily extended to support additional jurisdictions or booking centres.

Our semi-decentralised architecture ensures full data privacy, efficiency, security and a seamless user experience. It is an ideal mix to ensure that our clients retain control over their customers’ user experience, including personal data and documents to be signed at the highest assurance level. 

In short, the solution aims to: 

  • Offer end users a smooth and seamless experience. The end user can be onboarded and sign documents in a few minutes under the control of a bank advisor using custom branded apps. 
  • Help reduce operational costs without breaking privacy, since all client data and documents remain in the environment of the bank.
  • Deliver QES and non-repudiation to your businesses, since it meets strict EU regulations on qualified electronic signatures and other regulatory constraints such as PSD2.

Contact Cryptomathic for more information on the partnership and the joint digital onboarding solution.


Download white paper

Want to know how we can help ?

Get in touch to better understand how our solutions secure ecommerce and billions of transactions worldwide.