Modules

SPS Signature uses the following internal Worldline modules.

SWIFT database

In order to validate debtor account during the signature/validation, the SWIFT referential database is used. WL has an account holder with the SEPA Plus offer. (https://www.swift.com/our-solutions/compliance-and-shared-services/swiftref/sepa-plus/sepa-plus-features ) The SWIFT database is updating every days.

Creditor Service

SPS Creditor Service is the Worldline solution for managing the SEPA credit transfers and SEPA direct debits for creditors.

It provides the following services to Creditor Organizations:

  • Mandates management;
  • Transactions management;
  • Cash flow management;
  • Notifications delivery;
  • Digital mandates archiving.

A more complete description to the SPS Creditor Solution can be found into documents dedicated.

SPS Signature solution interacts with the SPS Creditor Solution. The links between them will be managed by WL.

Actions on items created by the Signature Module actions can be performed through the SPS Creditor Solution.

The following objects are linked to the Signature Process and can be managed through the SPS Creditor Module:

  • Mandates;
  • SDDs;
  • SCTs
  • Schedules;
  • Creditor Organizations and their parameters.

OTU/ORG Service

The OTU/ORG Service is the start point of the Signature process.

The OTU/ORG platform interacts with the OTU Certificate Public-Key Infrastructure and the Timestamp Authority to generate the OTU Signature of the Mandate when requested by the SPS Signature Platform.

OTU Certificate Public-Key Infrastructure:

The Public-Key Infrastructure is designed to produce “one-time usage” certificates that are valid for a very short period of time (15 minutes for example). Installed in Worldline’s RGS certified infrastructure.

Worldline Timestamp:

The Timestamp Authority platform creates the evidence that the mandate or the proof existed at the given time:

  • Compliant with RFC 3161 and ETSI 102023;
  • RGS certification in progress.

Tracer Service

The Tracer Service aims to manage the evidence collected during the Signature Process.

The signature module works with 2 different workflows:

  • Electronic signature workflow: the PDF signature is performed with an
    OTU certificate, with data based on the end-user identity (required to know
    without ambiguity the end user).
  • Electronic validation workflow: the PDF signature is performed with an
    organization certificate (required to know which system request the action).

The page flow, the error and the agreement expression process are exactly the same in both processes. However, the electronic validation workflow is less restrictive than the electronic signature because the end user has not to be strongly identified by the creditor.

The electronic validation let the creditor website managed his own risk (known end user or not) and the mandate is sign on the creditor name. The signature module knows without ambiguity the creditor system which has called it.

Archiver Service

This platform ensures the integrity and the possibility to retrieve a document in the time. Files are stored on secure filers, signed and time-stamped regularly to keep their legal value.

Compliant with:

  • ISO 14641-1 norm (known as NFZ 42-013 French norm);
  • ISO 14721 norm (OAIS);
  • Compliant with ISO 15489 norm for record management;
  • SIAF Agreement (Archives de France).

SIPS Service

As it is mentioned higher in this document, SIPS service can be used to call SPS Signature Service, but it can be also used for the customer authentication agreement. See details further in this document.

In case of SIPS Service is only used for authentication agreement, the
creditor will not have to contract with SIPS Service, the authorization will be
made on the SPS Signature’s name and no debit be made.

Push/Pull SMS-Mail Service

The Push/Pull SMS-Mail Service can be used for the customer authentication agreement. See details further in this document.