Signable ensures compliance with HMRC’s new Advanced Electronic Signature (AES) requirements
Published:
From the 6th April 2025, businesses submitting HMRC authorisations will now be required to use Advanced Electronic Signatures (AES) to confirm client approval. To support this transition, Signable has introduced two new security features – Two-Factor Authentication (2FA) for signers and Digital Signing – to become an AES provider, ensuring businesses can meet HMRC’s new requirements with ease.
From this date, businesses submitting tax repayment claims on behalf of clients must use Advanced Electronic Signatures (AES) rather than basic eSignatures. This regulation applies specifically to agents and businesses that charge a fee to submit Income Tax or PAYE repayment claims and are nominated to receive the repayment on behalf of their clients. It does not apply to standard income tax or self-assessment submissions.
Why is this change happening?
The introduction of AES for tax repayment claims is part of HMRC’s ongoing efforts to strengthen security, prevent fraud, and ensure the authenticity of signed authorisations. By requiring AES, HMRC is increasing the reliability of electronic signatures, ensuring they are uniquely linked to the signer, verifiable, and resistant to tampering.
To support this transition, Signable has introduced AES-compliant signing to its platform, helping businesses meet HMRC’s security requirements without disrupting their workflow.
How Signable is ensuring compliance:
- Two-Factor Authentication (2FA) for Signers: Signers will be required to enter a one-time passcode sent via SMS to verify their identity before signing. Initially, this will be available only for UK phone numbers, and businesses will have the option to enable or disable 2FA per document.
- Digital Signing with eSeal: Documents signed through Signable will include a cryptographic digital seal (eSeal) – a secure equivalent of a company’s official stamp – ensuring that the document’s origin and integrity can be instantly verified. The eSeal is AATL-compliant, meaning it will be recognised in Adobe PDF Reader and Microsoft Office Suite as an additional layer of security.
- Change Detection: While digital signing does not prevent document alterations, it makes any modifications clearly visible, helping businesses maintain the integrity of their signed records.
David de la Pena, Managing Director at Signable, said: “These changes highlight that there is a growing need for stronger security in digital transactions. Compliance can feel complex, but we’re making it simple by building AES capabilities directly into Signable. Businesses can now meet HMRC’s new requirements with ease and confidence.”
What businesses need to do from 6th April 2025
Businesses submitting tax repayment claims should ensure they:
- Use an AES-compliant eSignature provider
- Enable 2FA for relevant documents, ensuring HMRC compliance where required.
- Keep a record of compliance documentation, as HMRC may request proof.
Signable customers will find these security features built into the platform, making compliance straightforward without any disruption to their workflow. Businesses are encouraged to review their current signing processes and ensure they have the necessary compliance and documentation in place before the 6th April deadline.
Got questions about Advanced Electronic Signatures or how to stay HMRC compliant? We’re here to help! Visit signable.co.uk or give us a call on 0800 612 6263. Let’s make compliance much simpler, more Signable.