Index
Get the latest news right in your inbox
In today’s legal and business landscape, efficient critical communication is vital to protecting a company’s interests. Certified notification is not simply sending mail; it is the legal mechanism that guarantees irrefutable proof and express consent in any court, ensuring that the recipient received the document on a specific date.
With the digitization of processes, managing certified channels has become a key factor in avoiding non-payment, debt statutes of limitations, or penalties for non-compliance. In this technical guide, we detail the requirements necessary to optimize this process under the European eIDAS Regulation, delving into the strategic implementation of certified emails and SMS messages.
What is a certified notification?
A certified notification is a communication that provides irrefutable legal proof of sending and receipt. This mechanism guarantees, through time-stamping and cryptography, that the message has been delivered to a specific recipient and that its content has not been altered.
What can truly be proven with a certified notification is who sent it and who received it, when it was sent, delivered, and opened, and exactly what was sent, including the content and attachments sealed with a cryptographic hash.
This document or process generates a record of evidence that judges, notaries, and public administrations require to validate the “making available” of information. Without a valid notification, any legal summons or notice may be considered “not served” or subject to challenge.
It is important to understand the differences between electronic notifications and certified notifications. Both terms are used and are related to one another.
Difference Between Certified Notification and Ordinary Communication
Not all communications carry the same legal weight in court when it comes to proving what was sent and who received it.
The main difference lies in the absolute lack of guarantees provided by ordinary channels, since a traditional email, a postal letter, or a standard WhatsApp message are not reliable notifications because their identities are easily forged and read receipts can be disabled. Furthermore, email headers can be forged, SMTP servers do not issue tamper-proof certificates, and a postal read receipt does not prove exactly which documents were inside the envelope, allowing the text or attachments to be altered afterward and resulting in very low evidentiary value that requires costly forensic analysis in court.
In contrast, digital certified notification verifies the identity of the sender and recipient, ensuring the integrity of the content through a cryptographic seal that prevents alterations, and providing full traceability thanks to an official, tamper-proof timestamp. To achieve this, the involvement of a Trust Service Provider is required, acting as an impartial witness to the transaction, generating a certificate with qualified time stamps that cryptographically seal the document and grant it maximum evidentiary value through a legally valid record of evidence.
Certified Notification: Common Real-Life Examples
Certified notifications must be sent via certified communication platforms, as these guarantee the traceability of the transmission and generate electronic evidence that is fully admissible in court. For the legal process to be effective, the use of certified communication is imperative in the following common use cases:
- Human Resources: Termination notices, ERTE notifications, or warnings for workplace misconduct.
- Real Estate Sector: Termination of lease agreements, pre-eviction payment demands, or rent adjustments.
- Commercial Transactions and Debts: Pre-litigation claims for unpaid invoices (vital for interrupting the statute of limitations) and termination of B2B contracts.
- Banking and Insurance: Policy cancellations, unilateral changes to contractual terms, or mandatory compliance and digital onboarding communications.
Why is it important to use a certified notification?
The use of a certified communication or notification is an indispensable legal protection strategy. It is important to note that certified notifications may or may not be electronic, although it is currently recommended that they be so. Their importance lies in the principle of non-repudiation: it prevents the recipient from denying receipt of the communication or claiming ignorance of its content. The strategic benefits of a certified notification are:
- Robust evidence in court: It provides a record of evidence with an unalterable timestamp that a judge will accept as highly reliable documentary evidence.
- Management of "Delivery": It debunks the idea that the recipient must "accept" the communication. If the system certifies receipt on the destination server, the law protects the sender’s good faith.
- Compliance and Onboarding Protection: Essential for demonstrating the delivery of mandatory information in sectors regulated by anti-money laundering or consumer protection laws.
These strategic benefits ensure the security of corporate data flows, providing organizations with the necessary tools to defend their interests before any competent authority.
Risks of Not Using a Certified Notification
The use of informal channels for critical communications entails exposure to risk that can seriously compromise an organization’s financial viability. Failing to use secure communication channels does not constitute effective cost reduction; rather, it creates a critical risk for the organization that can lead to the loss of rights and the expiration of claims. Without solid proof of delivery, deadlines for debt collection may expire, resulting in the permanent loss of the right to collect.
Furthermore, sending critical documents via ordinary channels creates the risk of presenting documents that are easily challenged in court. A simple email or screenshot can be contested by the opposing party on the grounds of digital manipulation, which would force the company to incur costly expenses for computer forensics that, in many cases, do not even guarantee the success of the evidence in court.
This poor practice exposes the corporation to severe penalties for regulatory non-compliance with various regulations. A failure to ensure the traceability of communications regarding data privacy and other sensitive documents can result in fines running into the millions imposed by agencies such as the AEPD under the GDPR, highlighting the absolute necessity of abandoning ordinary channels.
Legal Framework for Certified Notification in Spain and Europe
The validity of this process is strictly regulated at the national and international levels. To comply with current regulations, any digital certified notification is based on the following legal framework:
- eIDAS Regulation (EU Regulation 910/2014): Establishes the European standard for Certified Electronic Delivery Services. It guarantees that a document will not be denied legal effect solely because it is in electronic format.
- Civil Procedure Act (LEC): Articles 162, 152, and 52.1.2 of the LEC validate communications made via telematic or electronic means that provide proof of their dispatch, receipt, date, time, and content. Article 326 reinforces their evidentiary value when qualified service providers are involved.
- Civil Code: Governs contractual relationships and the requirement for notification with evidentiary value (e.g., Art. 1973 on the interruption of the statute of limitations for actions through extrajudicial claims).
- Law 6/2020 regulating certain aspects of trusted electronic services: This Spanish law complements eIDAS and grants full probative value to electronic documents issued through qualified service providers.
- GDPR and LOPDGDD: Require auditable evidence in communications related to the privacy of personal data.
What requirements must a certified notification meet to be valid?
For a judge to accept the evidence record from an electronic platform, the system must strictly comply with rigorous technical requirements, starting with the reliable identification of the sender and recipient through the recording of source (IP, email, phone) and destination addresses. Additionally, it must guarantee the unalterable integrity of the content by applying a hash function and generating a unique cryptographic algorithm for both the message and its attachments, thereby ensuring that they have not undergone any modification after transmission.
Added to this is the requirement to incorporate a Qualified Time Stamp issued by an official authority, as well as traceability and delivery confirmation that records all the servers through which the message passes until it is made available.
How to Send a Certified Notification the Traditional Way
Before digitization, options were limited and relied exclusively on paper and in-person delivery. Among the best-known traditional methods is the burofax with return receipt and text certification, considered the standard by Correos in Spain, which requires physical mailing and delivery by a mail carrier. Another common option is the formal notice or notarial record, a process in which a notary goes directly to the address to deliver the document and draw up a record of the event.
Although legally indisputable, they present critical disadvantages for the corporate environment today:
- High costs: A physical certified letter with multiple pages can cost between 15 and 30 euros. A notarial deed easily exceeds 100–200 euros.
- Slowness and friction: They disrupt digital workflows and the immediacy demanded by today’s businesses.
- Environmental impact: They generate a high carbon footprint due to the massive use of paper and logistics transportation.
- Difficult technological integration: They cannot be integrated via API into a company’s ERP or CRM systems to automate bulk mailings (such as overdue invoices).
How to Create a Digital Certified Notification Step by Step
Digitizing this process provides immediacy and a drastic reduction in operating costs, leading leading companies to adopt 100% digital workflows to obtain legal evidence quickly. The first fundamental step is to select a Qualified Trust Service Provider (QTSP) that strictly complies with eIDAS regulations, since a corporate Gmail email is not valid on its own. Once selected, you must prepare the dispatch from your software by integrating your ERP or CRM so that it generates the document (whether an invoice or a contract) and sends it directly to the certification platform via an automated API connection.
Subsequently, the omnichannel delivery is executed, where the system distributes the notification via Certified Email or Certified SMS according to the recipient’s preferences and details. During this process, interception and encryption occur; at this point, the provider logs the document’s passage through the servers, time-stamps it, and encrypts the content in real time to ensure its integrity. Finally, the digital custodian automatically generates a Document of Evidence (Certificate) in PDF format, which is archived in your systems, ready to be presented in court, and is held by the trusted provider for a period of 5 to 10 years.
Digital Tools for Managing Certified Notifications
The use of specialized platforms transforms the management of legal communications, eliminating friction and automating comprehensive regulatory compliance. Trusted platforms like Tecalis allow you to unify these tools with maximum security and eIDAS compliance:
- Certified email and SMS: Tools like Tecalis Sign allow you to automate the sending of requests directly from your work environment (via API or web platform). They turn a simple email or SMS into robust legal evidence, recording the IP address, geolocation, and device, and applying timestamps that generate an irrefutable evidentiary document.
- Electronic Burofax: A type of certified email but with an extra layer of security that sometimes requires the recipient to authenticate (via OTP to their mobile phone, for example) before being able to download the attached document.
Specialized companies (such as registered trusted service providers) are the only ones authorized to offer these services with full eIDAS certification.
