Help with our D-Trust Signature and Seal Cards

A vulnerability has been identified in certain chips manufactured by Infineon, which are used in some of D-Trusts signature and seal cards. In coordination with the German Federal Office for Information Security BSI and our supplier, we are preparing a replacement programme. Cards containing this chip that use the ECC algorithm will likely no longer be approved for qualified electronic signatures or seals from December 2025.

The card replacement affects the following card products:

• Signature D-Trust Card 4.1(a) M100
• Signature D-Trust Card 4.1(a) Multi
• Signature D-Trust Card 5.1 M100, produced before February 2025
• Signature D-Trust Card 5.1 Multi, produced before February 2025
• Seal D-Trust Card 4.4(a) Multi
• Seal D-Trust Card 5.4 Multi, produced before February 2025

Single signature cards (D-Trust Card Std.) are not affected by this replacement.

Since February 2025, D-Trust has been supplying signature and seal cards that are not affected by this issue. These can be identified by the addition of “V1.2” to the printed product name. An example of a printed product name is “D-Trust Card 5.1 M100 V1.2”.

You’ll also find a reference to the chip used on your delivery note. Here, the designation of the QSCD is listed alongside the product name: “(CardOS V6.0 ID R1.2)”

All batch and multi-signature cards of D-Trust Card 4.x and those D-Trust Card 5.x cards delivered up to early 2025 are affected. These cards were issued by D-Trust as M100 and Multi cards.

Single signature cards (D-Trust Card Std.) are not affected by this replacement.

• If your card is affected by the replacement scheme, there is no need for immediate action. Signature and seal cards currently in circulation may continue to be used until December 2025. If your personal card needs to be replaced, D-Trust will contact you directly and provide guidance on the next steps. You will receive an email from D-Trust in the third quarter of 2025 from the account qes-support@d-trust.net.
• Single signature cards (D-Trust Card Std.) are not affected by the replacement.

No, you do not need to take any action yourself. If your card is affected, D-Trust will notify you automatically by email and explain all necessary steps. Please wait for this email notification and then follow the instructions provided. 

There are no costs to you if your card is replaced as part of this process and no changes are made to the certificate data.

As a qualified trust service provider, D-Trust is obliged to permanently revoke all affected cards by early December 2025. After this date, it will no longer be possible to create valid qualified signatures or seals using any batch or multi-signature card or multi-seal card based on the affected QSCD.

If your signature or seal card expires before December 2025, a replacement will not be required. You will find the respective expiry date printed on your personal card.

If your personal card needs to be replaced, D-Trust will contact you directly and provide guidance on the next steps. 

Single signature cards (D-Trust Card Std.) are not affected by this replacement scheme.

You will have received an email from D-Trust from the account qes-support@d-trust.net outlining the next steps. Within the following weeks you will receive an email containing a personalised link to the D-Trust Portal. This registration link is valid for 14 days. Please follow the link to the D-Trust Portal and complete the required steps to set up your personal account. Further FAQs regarding the D-Trust Portal are available for you at https://www.d-trust.net/de/support/d-trust-portal.

Have you moved house or has your organisation’s delivery address changed? If the delivery address provided in your original card application is no longer correct, please contact our Call and Support Centre in writing. You can reach our support team via email at qes-support@d-trust.net.

No, you do not need to block your card manually. As part of the replacement process, D-Trust will automatically block the affected signature and seal cards from early December onwards. If your card is affected, you will receive an email notification when the deactivation takes place.

Please note that, once blocked, the respective card can no longer be used for qualified signatures or seals.

For signature cards, the following applies: both certificates stored on the card will be revoked. This includes the qualified certificate for signatures and the advanced certificate for authentication and encryption purposes.

If you wish, you can return the old card to D-Trust after it has been blocked. Before sending it, please cut through the chip to ensure the card is permanently disabled. Important: Any data encrypted using this card can only be decrypted with this specific card and its associated keys and PINs. If you still need the card to access encrypted data, please store it securely until decryption is complete.

In principle, yes. Please note that you must always reinitialise the cards. If the replacement involves switching from the D-Trust Card 4.x to the D-Trust Card 5.x, please refer to our guidance on commissioning at  https://www.d-trust.net/de/inbetriebnahme-karten. Here you will also find information about any necessary software or firmware adjustments.

Under legal regulations, applying for a signature or seal card always requires personal identification of the applicant. This is stipulated by the eIDAS Regulation for qualified trust services. You will need to present a valid official ID document (e.g. identity card, passport or electronic residence permit [eAT]) that is valid for at least four more weeks.

Note: Seal cards may only be requested by a person authorised to represent the organisation.

You can choose from different identification procedures during the application process. For customer projects, procedures for the identification of your own employees are also available as needed.

• PostIdent procedure: Complete your application documents and verify your identification at a local post office using the PostIdent procedure. Alternatively, you can use the PostIdent app. Simply enter the PostIdent transaction number from your coupon at the end of the ordering process. The app allows identification via the online ID function of your German identity card. Click here to start your application.
• NotarIdent procedure: Complete your application documents and verify your identity with a notary. Click here to start your application.
• BotschaftsIdent procedure: Complete your application documents and verify your identity at a German embassy abroad. Click here to start your application.
• Chamber of Commerce (IHK): Over 60 Chambers of Industry and Commerce across Germany offer a member service for signature cards. You will be guided through the process and identified on-site. A list of participating chambers can be found here.
• OfficerIdent or BehördenIdent procedure: For organisations with a larger demand for signature or seal cards, D-Trust offers two options to carry out in-house identification of employees or clients. There are two procedures available for this. If your organisation would like to act as a registration office via OfficerIdent, please contact the D-Trust sales team. For public sector clients, D-Trust also offers the BehördenIdent process.

All D-Trust signature and seal cards can be ordered via the D-Trust Portal .

To do so, you’ll need to create a personal account in the D-Trust Portal. This is important, as your account will also provide access to personal services after your order – such as certificate revocation or submitting a complaint about your card. Please note: it is not permitted to place orders for third parties via your personal account.

For more information, see our dedicated FAQ page for questions relating to the D-Trust Portal.

Do you already have a D-Trust card and is your certificate about to expire? In this case, you will receive an email from us with further information.

Please note that if your organisation has a separate contract with D-Trust, you must place your follow-up order exclusively via your organisation’s dedicated shop. If you have any questions, please contact the issuing office of the organisation from which you originally obtained your signature card.

You can check which shop you’re using by looking at the label in the top right corner beneath the D-Trust logo. The D-Trust direct customer shop is labelled “D-Trust Shop”.

To reorder a card via the D-Trust Portal, a personal account is required. For details, please refer to our FAQ page for questions relating to the D-Trust Portal.

We offer a simplified application process if the following conditions are met:

1. Your name has not changed since your last application.
2. You still use the same email address you used when ordering your previous card If applicable, a personal account in the D-Trust Portal with this email address is required.
3. No more than 10 days have passed since your previous signature card expired.
4. Your previous identification with D-Trust is still valid. If not, the portal will guide you through a new identification process.
5. The ID document you used to identify yourself for your previous card is still valid for at least four more weeks.

You do not need to repeat the identification process if your previous identification is still valid. If your identification has expired, the D-Trust Portal will automatically prompt you to begin a new identification process.

Note: Replacement applications are not available for seal cards

Please note that, due to regulatory requirements, adjustments to the ordering process for replacement cards were introduced in early 2023.

D-Trust is required to verify the identity of applicants at regular intervals. Therefore, you may be asked to re-identify yourself when requesting a replacement card.

If you are affected by this regulatory adjustment, please place your new card order via the D-Trust Portal or contact the issuing office of the organisation from which you originally obtained your signature card.

Have you already completed the identification process and sent all required documents to D-Trust by post? This must be done before starting the production of your card. The production process of your signature or seal card involves several steps: from checking the documents for completion to creating the certificate. Therefore, please allow some time after applying for your signature or seal card until you receive your card.

The status of your orders and existing products is displayed directly on the dashboard in the D-Trust Portal. To check the status, please log in to the D-Trust Portal.

Once logged in to the dashboard of the D-Trust Portal, you will also see a checklist of any remaining steps and required documents linked to your order. This checklist is available to download at the end of the ordering process and serves as a guide to help you complete your application and identification.

Please also refer to our additional FAQ page for questions relating to the D-Trust Portal.

Certificates for qualified signature cards are always issued to the applicant (a natural person).

However, it is possible to include the name of the organisation you work for in your certificate. To do so, a person authorised to represent your organisation must sign a proof of organisational affiliation form (Organisationszugehörigkeitsbescheinigung – OZB). This form is provided at the end of the application process and must be submitted to D-Trust along with the completed application documents.

Note: Seal certificates (issued to legal entities) always include the organisation’s name. A qualified seal card can only be applied for by an authorised signatory of the organisation.

If you would like your organisation’s name to appear in your personal certificate, the proof of affiliation must be signed by a person with legal signing authority.

By signing, the authorised signatory of the organisation confirms the applicant’s affiliation with the organisation.

Authorised signatories are: 

1. Registered representatives of private-sector organisations, such as managing directors or holders of procuration (Prokura) officially listed in the commercial register (e.g. in the case of a GmbH).
2. Authorised officials of public authorities, such as those who are permitted to use an official seal in the public sector. 
   
   Note: These individuals hold an official seal.
3. Persons registered by contract with D-Trust as identifying officers (so-called Officers). 
   
   Note: A project contract / identification contract is concluded between the organisation and D-Trust. Registration as an Officer or BehördenIdent Officer must take place before the person completes the identification process.
4. Authorised representatives of associations, public institutions or non-profits, as set out in the organisation’s statutes or organisational chart.

We offer you two signature cards with professional attribute in the D-Trust Portal .

• The Profession D-Trust Card Standard, a signature card with a professional attribute allowing individual signatures per PIN entry.
• The Profession D-Trust Card M100, a batch signature card with a professional attribute allowing up to 100 signatures per PIN entry.

A professional attribute can only be included in the certificate with confirmation from a German Chamber. Proof of D-Trust registration is required. You will receive a form during the order process which must be signed by the appropriate chamber. The confirmed form must then be submitted to D-Trust with your other application documents.

D-Trust currently allows for the following professions to be included:

• Architect
• Consulting Engineer
• Certified Translator
• Design Author
• Bailiff
• Engineer
• Landscape Architect
• Mine Surveyor
• Senior Bailiff
• Publicly Appointed Surveyor
• Patent lawyer
• Solicitor
• Registrar
• Tax Adviser
• Veterinary surgeon
• Structural Engineer / Environmental Assessor
• Certified Accountant
• Auditor

D-Trust, in partnership with over 40 Chambers of Industry and Commerce (IHKs) across Germany, offers a member service for signature cards. You will be guided through the process and identified on-site. A list of participating chambers can be found here.

If you are a certified expert (Sachverständiger) involved in electronic legal communication with courts, you can find a helpful overview, including how to obtain and use signature cards for expert witnesses (Expert D-Trust Card), at the following link:

• https://www.de-coda.de/sachverstaendigen-signatur/auf-einen-blick

Additional FAQs specific to the certified expert signature card (IHK Sachverständigenkarte) are available here: link:

• https://www.de-coda.de/sachverstaendigen-signatur/faqs-zur-sachverstaendigen-signatur

For publicly appointed and sworn certified experts in the skilled trades sector, D-Trust provides a dedicated application page in the D-Trust Portal. In this case, please order your signature card via the link provided here. Before you use the card, personal registration in the D-Trust Portal is required.

The following cards are no longer available:

• D-Trust Card 4.1 Standard
• D-Trust Card 4.1 M100
• D-Trust Card 4.1 Multi
• D-Trust Card 4.1 UPC
• Profession D-Trust Card 4.1 Standard
• Profession D-Trust Card 4.1 M100
• Seal D-Trust Card 4.4 Standard
• Seal D-Trust Card 4.4 Multi

For regulatory reasons, these cards have been replaced by the newer card generations “D-Trust Card 5.1” and “Seal D-Trust Card 5.4”. All new-generation cards are valid for up to 3 years.

Please note that, due to regulatory requirements, D-Trust Cards 4.1 (Signature) and 4.4 (Seal) may only be used for qualified electronic signatures until 28 September 2026. After this date, D-Trust is required to revoke these cards and prevent their further use.

To initialise your D-Trust card, you will need the D-Trust Card Assistant software and your PIN letter.

A download link for the free software is automatically sent by email once your card is produced. We recommend that you always use the latest version of D-Trust Card Assistant.

For security reasons, all PIN and PUK codes are sent separately in a printed PIN letter.

Please refer to our dedicated information page for the initial activation of your card: https://www.d-trust.net/de/inbetriebnahme-karten. Here you will find an overview of the specific requirements for your card.

A download link for the free software is automatically sent by email once your card is produced. We recommend that you always use the latest version of D-Trust Card Assistant.

The link provided by e-mail always has a limited validity. If this has expired, you can request a new one. To do so, simply click on the link provided in the email. Our system will automatically generate a new email for you with a download link. If this is not possible, please contact support@d-trust.net.

In order for certificates to be verifiable, activation is always strictly required to enable you to use qualified electronic signatures or seals with your card.

All certificates for cards ordered via the D-Trust Portal are automatically activated within approximately 24 hours after dispatch of the cards. Confirmation of receipt of the card and PIN letter is not necessary. Please contact our support team (support@d-trust.net) if you have not received your card within 14 days after being notified of its dispatch.

If you enter any of your card’s PINs incorrectly more than three times, that PIN will be blocked. To unlock the card, you will need your PUK and the D-Trust Card Assistant software, which you also use to activate the card.

We recommend that you always use the latest version of D-Trust Card Assistant. The software is always made available to you for as a download when the card is sent to you.

Please note:

All cards are delivered with a PUK, which can unblock the following PINs, depending on the card:

• Transport PIN
• Signature or seal PIN (individually assigned)
• Card PIN or AUT PIN (individually assigned)

Please follow the instructions of the D-Trust Card Assistant to unlock your PIN using the PUK.  You’ll find guidance specific to your card type on the onboarding overview page.

Your CAN (Card Access Number) is required for using D-Trust Card 5.1 or 5.4 cards.

You will find your individual 6-digit CAN printed on the front of your card.

Your CAN (Card Access Number) is required for using D-Trust Card 5.1 or 5.4 cards.

By entering the 6-digit CAN, a secure channel is established with the card chip, through which the card communicates with your respective software application. The CAN may be stored by the application, so that it only needs to be entered once upon first use.

Please report the loss of a card to D-Trust immediately. The same applies if you suspect misuse of a card. In such cases, you should have the card blocked immediately.

You can find information on how to block your card here.

According to the eIDAS Regulation, a trust service provider (D-Trust) must immediately block a qualified certificate if

• A person holding a signature key or their authorised representative (= third party authorised to request blocking) requests it,
• the certificate was issued based on incorrect information,
• the trust service provider discontinues its activities, and these activities are not continued by another trust service provider,
• the person holding the certificates (you) does not fulfil their contractual obligations,
• other reasons for revocation were stipulated in agreements,
• the applicant reports that they did not receive their card and PIN letter within 14 days of dispatch notification.

As soon as you no longer need your signature or seal card, you can have it revoked or destroy it yourself – for instance, by using a hole punch in order to destroy the chip. Important: Any data encrypted using this card can only be decrypted with this specific card and its associated keys and PINs. If you still need the card to access encrypted data, please store it securely until decryption is complete.

Blocking can be requested in writing or electronically via the customer portal. Each organisation designates an authorised person for each card, who receives a revocation password by post from D-Trust.

You can find information on how to block your card here.

Until early 2024, D-Trust continued to offer the option to use SMS-TAN for orders in certain projects. This particularly applies to all orders placed with D-Trust before December 2021, or orders submitted after this date using alternative application channels (e.g. via D-Trust partners, customers or resellers).

If you have registered and placed your order via the D-Trust Portal, the SMS-TAN process does not apply. Products ordered within the portal do not support the SMS-TAN process.

The SMS-TAN process is no longer offered for new projects or orders with D-Trust.

Customers who still use cards with SMS-TAN can continue to block these cards by entering the TAN. You can find information on how to block your card here.

Please refer to our dedicated information page for the initial activation of your card: https://www.d-trust.net/de/inbetriebnahme-karten. Here you will find an overview of the specific requirements for your card. To use the signature or seal card, you will need a card reader and – depending on the application you wish to use – additional software. 

A selection of suitable card readers, an example of middleware, or signature software can be purchased in the D-Trust customer shop at REINER SCT.

D-Trust collaborates with many manufacturers of signature software. A list of providers can be found on our overview page.

Certain applications, such as Adobe Acrobat, Microsoft Outlook or Firefox, do not communicate directly with the card reader and require what is known as middleware (for example, Nexus Personal or SC Interface by cryptovision).

In particular, middleware is essential for using the cards with ELSTER or in the browser-based CMS application of the Unified Patent Court (UPC).

D-Trust cooperates with several manufacturers of middleware. You can find a list of providers compatible with your signature card and application on our overview page.

Here you will find a selection of current applications that support qualified electronic signatures:

• ELSTER tax return
  
  https://www.elster.de/
• Electronic application for certificates of origin via IHK
  
  https://euz.ihk.de/euzweb/euz-altanwendung2
• Online processing of public tenders / e-award platform of the Federal Government
  
  https://www.evergabe-online.de
• Bavaria AVA-Online construction tender platform
  
  https://www.vergabe.bayern.de/
• Berlin AVA-Online construction tender platform
  
  https://www.berlin.de/vergabeplattform/
• subreport tender platform
  
  https://subreport.de/ (Login ELViS)
• Vergabe24 – public tenders
  
  www.vergabe24.de
• Logistics Centre Baden-Württemberg
  
  https://www.lzbw.de/start
• Vergabeplattform Bremen (public procurement platform Bremen)
  
  https://www.vergabe.bremen.de
• Vergabemarktplatz NRW (public procurement marketplace NRW)
  
  https://www.evergabe.nrw.de/
• Public and private construction tenders via bi-online
  
  https://www.bi-medien.de/
• Electronic court and administrative mailbox
  
  https://egvp.justiz.de/
• (National) Emissions Trading
  
  https://www.dehst.de/
• Electricity Price Compensation
  
  https://www.dehst.de/
• Carbon Leakage Compensation
  
  https://www.dehst.de/
• Online pension account enquiry
  
  https://www.deutsche-rentenversicherung-bund.de
• Unified Patent Court (UPC) of the EU
  
  https://www.unified-patent-court.org/
• Legally effective registration of intellectual property rights at the Deutsches Patent- und Markenamt (German Patent and Trade Mark Office)
  
  https://www.dpma.de/
• Electronic waste documentation procedure with ZEDAL
  
  https://www.zedal.de/
• Electronic waste documentation procedure with eANVportal
  
  https://www.eanvportal.de/

For use of signature cards in the ELSTER portal, a D-Trust Card 5.1 Standard is required. In addition to this single signature card, the ELSTER portal operates with the Nexus Personal middleware, which is mandatory.

The D-Trust signature cards M100 or Multi are not suitable for this application. Please order our D-Trust Card 5.1 Standard. You will receive the card in the D-Trust Portal.

If required, you can obtain the Nexus Personal middleware in the D-Trust customer shop at REINER SCT.  Please also refer to our overview page for suitable providers for your signature card on our overview page.

For use with the Unified Patent Court (UPC), a signature card is required that, in addition to a qualified certificate for electronic signature, also enables authentication by an eIDAS-compliant certification authority (CA) with the application.

For this reason, the standard D-Trust signature cards are not suitable for this application. Suitable products for use with the UPC are:

• The D-Trust Card 5.1 UPC. The D-Trust Card 5.1 UPC is a single signature card without a professional title in the certificate. You can obtain this card via the D-Trust Portal shop of the German Patent Attorneys’ Chamber.
• The Patentanwaltsausweis Plus. This ID card for patent attorneys, issued by the Patentanwaltskammer (German Patent Attorneys’ Chamber), is a D-Trust single signature card with a professional attribute in the certificate.

Please also refer to the information on suitable accessories for your signature card on our overview page.

When your card is dispatched, you will also receive a free download link for the D-Trust Card Assistant software. This tool is required to initialise your card by assigning your personal PIN.

To use the card with the UPC application, you need:

• a card reader,
• additional software (known as middleware) for the authentication application,
• signature software.

If you do not yet use any middleware, you have the option of purchasing the Nexus Personal software (from version 5.14) or the SC Interface from Cryptovision (from version 8.2.8), as well as signature software and a suitable card reader, in the shop for D-Trust customers at REINER SCT. Please also refer to the information on suitable accessories for your signature card on our overview page.

For applications relating to Carbon Leakage and electricity price compensation via the German Emissions Trading Authority (DEHSt), companies must submit documents signed with a Qualified Electronic Signature (QES) through the DEHSt’s Virtual Post Office.

There are three groups of individuals required to provide a signature:

• Applicants from companies seeking to receive compensation, and
• Authorised auditors who confirm information regarding the environmental contributions.

Both of these groups may use qualified signature cards for single signatures (e.g. D-Trust Card 5.1 Std.). It is also possible to use batch signature cards in the workplace (e.g. D-Trust Card 5.1 M100).

• Chartered auditors (Wirtschaftsprüfer) who confirm factual information in the relevant state aid application by means of their signature. Additionally, it is mandatory for this group that the signature certificate includes a professional attribute. Therefore, please select a D-Trust Profession Card for signing. For single signatures, we recommend the Profession D-Trust Card 5.1 Std, and for batch signatures the Profession D-Trust Card 5.1 M100.

If required, you can also obtain the necessary card readers from the D-Trust customer shop at REINER SCT.

No, for the ICS2 (Import Control System 2) application of customs, no qualified seal card is required. Instead, D-Trust recommends using the Qualified Seal ID, which is suitable for ICS2 use.

Qualified seals are required for use with the EU product database EPREL (European Product Registry for Energy Labelling). Please order at least one qualified seal card (individual seal card, D-Trust Card Standard Seal) in the D-Trust Portal. If you are already using a D-Trust Card Multi Seal, you may continue to use it.

The seal card is only used once to add a seal to the company registration information stored with EPREL, thereby confirming it. This seal is required both for newly added companies as well as for companies that have been registered with EPREL for a while. The company information whose origin and identity are confirmed in this way is stored in the EPREL database.

The use of the D-Trust Qualified Seal ID is not permitted for the EPREL application.

Please note that sole proprietors (e.g. registered merchants) cannot apply for seal cards. For this purpose, the EPREL application requires the use of a Qualified Electronic Signature, including an organisational attribute in the certificate.

Qualified seals are required for use with the EU product database EPREL (European Product Registry for Energy Labelling). A particular requirement is the entry of the so-called Organisation Identifier in the interface of the EU portal for the EPREL application.

To read the Organisation Identifier from your D-Trust seal card, you will need the D-Trust Card Assistant software. This software is available for free download when you order a seal card from D-Trust. Please follow the instructions in the PDF guide for reading out the Organisation Identifier.

The product designation is always printed on your card. Since February 2025, D-Trust has been producing cards with an adapted version of the QSCD. You can recognise this adapted version if “v1.2” is printed after the product designation (for example: “D-Trust Card 5.1 M100 v1.2”). In addition, the details of the chip used (CardOS 6.0 ID R1.2) can be found in detail on your delivery note.

A standard signature or seal card is designed for individual signatures or seals per PIN entry at the workstation. In contrast to standard cards, the batch and multi cards allow multiple signature operations with a single PIN entry.

In addition, the cryptographic keys used in the cards also differ. While the standard cards work with RSA keys, multi-sign cards use ECC-based keys.

D-Trust multi cards are preferably used in a secure environment, such as a server room. If you need multiple signatures in your office, please use a D-Trust M100 card for batch signatures of up to 100 per PIN entry.

D-Trust does not offer batch processing cards for qualified seals.

In all cases, the use of a multi-signature card requires dedicated signature software that is specifically licensed for this purpose.

In contrast to a signature card, the certificates on a seal card are issued to a legal entity (e.g. public authority or organisation). Since no natural person is named in the seal card certificate, a seal card can be used by all authorised employees. Seal cards are always used where the stamp or confirmation of an organisation is required (e.g. certificates, notices).

On our central overview page you will find a list of signature software from various providers that can be used with our signature cards. Your provider is not listed? Please contact our sales team (vertrieb@d-trust.net) so that we can check whether the signature components possibly support our cards.

The certificate on a signature card contains the personal details: surname, first name (preferred name), and optionally an email address.

Please note that the preferred first name (name used) must be stated in the application process. The number of characters in the certificate is limited, so the name used is fallen back on, especially in the case of multiple first names.

Organisational information or certificate extensions, such as pseudonyms or monetary restrictions, can be entered in the certificate as well.

To add a selected occupational attribute to a signature card, please order the D-Trust card with an occupational attribute (Profession D-Trust Card). Proof of the professional attribute is required. You must submit confirmation (e.g. from a chamber) together with the application.

You have the option of having a pseudonym included in your certificate. The pseudonym will then appear in the certificate instead of your name. This will be indicated by “:PN”.

Each pseudonym may only be assigned once.

Pseudonyms requested for D-Trust standard cards or a D-Trust Multicard 100 are always assigned by D-Trust.

A chargeable custom pseudonym, such as one referring to the company name or describing the intended use of the signature card, can only be specified in the application in conjunction with a D-Trust Card Multi. If the pseudonym selected already exists, we may have to reject or number it.

For example, it makes sense to enter a pseudonym when multi-signature cards are being used for electronic invoice management. If your certificate contains an organisation, the organisation will be informed about the use of the pseudonym.

Note: Many e-government applications cannot be used if a pseudonym is included in the certificate. Seal cards are generally excluded from pseudonymisation.

No, the use of a signature card issued to a natural person is always restricted to that person. All legally binding declarations made in this way are always deemed to be made by the person entered in the certificate, no matter who actually uses the signature card. Therefore, you should always take particularly good care of your signature card and store it in a safe place. In particular, never disclose your personal PIN to anyone. If you suspect that your card has been misused, please have it blocked.

Note: A D-Trust seal card issued to a legal entity (juristische Person) may be used by several authorised persons.

Additional products for your signature or seal card, such as card readers, can be purchased in the D-Trust customer shop at REINER SCT. Please also note the information on the different card generations on our overview page.

We regularly test devices from different manufacturers in combination with our card products.

You can find recommended devices on our overview page. Please note in particular that when using the D-Trust Card 5.1 or D-Trust Card 5.4, it may be necessary to update the firmware of your card reader.

The cyberJack e-com device is no longer recommended for use with our cards.

You can purchase card readers in the D-Trust customer shop at REINER SCT.

D-Trust offers bulk ordering for qualified seal cards or for test products.  Please select the desired quantity at the end of the order process.  All cards from the multiple order contain exactly the same certificate data. Identification only needs to be provided once when ordering multiple seal cards. Bulk ordering of qualified signature cards is currently not possible.

For security reasons, your PIN letter is produced and dispatched two days after your signature or seal card has been shipped.

First, please clarify possible causes with our support team. You can find further information on making a complaint about our card products here:

• https://www.d-trust.net/de/support/reklamation

We will notify you in good time by email that your signature or seal card will soon expire.

You can then place a repeat order for a follow-up signature card. Please follow the instructions in the information e-mail sent to you when your card expires.

Note: It is not possible to submit a follow-up application or to reorder seal cards.

Adobe Reader automatically recognises signatures in documents and enables you to view a signature panel. This window displays valid signatures with a green mark, and you can see further details.

If Adobe Reader shows the signature as unknown, you can update the trust services.

In your Adobe Reader, go to “Edit” and select “Settings.” You will find the item “Trust Services” here. At this point, you can trigger an update to the latest version of the Adobe Trusted List and the European Trusted List. After performing an update, the previously unknown signature should be displayed as valid when checked again.

LDAP stands for “Lightweight Directory Access Protocol”. Essentially, it serves as the public directory for the publicly available part of digital certificates. Here you can query certificates in the D-Trust-Verzeichnisdienst (D-Trust directory service).

Depending on the chosen certificate product, certificates are published in the LDAP directory service. For signature and seal cards, you can select in the application process whether you would like to use this option.

Please note in this regard that some applications require publication in the LDAP. These include, for example, the Federal Procurement platform and the Emissions Trading Authority.

You can revoke consent to publish certificates in the D-Trust online certificate database effective for the future at any time. Please indicate your application ID on the written revocation request and send it to to D-Trust GmbH, Antragsbearbeitung (application processing department), Kommandantenstr. 15, 10969 Berlin.

If you decide against having your details entered into the D-Trust online certificate database, please note that this decision cannot be reversed at a later date.