Digital signature Nepal is legally recognized under the Electronic Transaction Act, 2063 (2008). This law grants electronic signatures the same legal standing as handwritten signatures. Understanding digital signature Nepal validity is essential for businesses, legal professionals, and individuals engaging in electronic transactions.
A digital signature Nepal is a cryptographic mechanism that authenticates the identity of a signatory. It ensures the integrity of an electronic document. Unlike a scanned image of a handwritten signature, a true digital signature relies on public key infrastructure (PKI). This creates a unique, verifiable, and tamper-evident signature that binds the signer to the document.
The Electronic Transaction Act, 2063 defines a digital signature as a signature made in electronic form. It is included in the transformation of an electronic record by using an asymmetric cryptosystem. This technical definition distinguishes genuine digital signatures from simple electronic marks or scanned images.
The digital signature Nepal framework operates under multiple laws and regulations. These statutes establish the legal basis, technical standards, and institutional roles.
| Legal Instrument | Key Provisions | Regulatory Authority |
|---|---|---|
| Electronic Transaction Act, 2063 (2008) | Section 3: Electronic record recognition; Section 4: Digital signature equals handwritten signature | Ministry of Communication and Information Technology |
| Electronic Transaction Rules, 2064 (2007) | Procedural guidelines for DSC issuance, CA licensing, technical standards | Office of Controller of Certification |
| Evidence Act, 2031 (1974) | Amended to allow admissibility of electronic records as evidence | Courts of Nepal |
| National Criminal Procedure Code, 2074 (2017) | Provisions for examination of electronic evidence | Judiciary |
| Information Technology Policy, 2072 (2015) | Promotes e-governance and digital infrastructure | Government of Nepal |
The digital signature Nepal framework was significantly advanced by the Electronic Transaction Act, 2063. This act was enacted on 18 Mangsir 2063 BS (4 December 2006 AD). It remains the controlling cyber and digital-transactions law in Nepal as of 2026.
For a digital signature Nepal to be legally valid, specific technical and procedural requirements must be met. These requirements ensure authenticity, integrity, and non-repudiation.
| Requirement | Description | Legal Basis |
|---|---|---|
| Asymmetric Cryptosystem | Uses public and private key pair for signing and verification | Section 4, ETA 2063 |
| Licensed CA Certificate | Must be authenticated through a Digital Signature Certificate from an OCC-licensed certifying authority | Section 4, ETA 2063 |
| Hash Function | Cryptographic algorithm ensures document integrity | ETA Rules 2064 |
| Subscriber Control | Private key must be under the exclusive control of the signer | Section 32-33, ETA 2063 |
| Valid Certificate Period | DSC must be valid at the time of signing | Section 25-26, ETA 2063 |
A digital signature Nepal carries the legal weight of a wet-ink signature only when these conditions are satisfied. Signatures created through unlicensed international e-signature platforms or simple scanned images do not enjoy the statutory presumption of validity.
The Office of Controller of Certification (OCC) is the apex regulatory body for digital signature Nepal. It operates under the Department of Information Technology (DoIT), which falls under the Ministry of Communication and Information Technology (MoCIT).
| OCC Function | Description | Impact |
|---|---|---|
| Licensing Certification Authorities | Grants licenses to entities eligible to issue DSCs | Ensures only qualified CAs operate |
| Setting Technical Standards | Establishes PKI and cryptographic standards | Maintains system integrity |
| Audit and Oversight | Conducts regular audits of licensed CAs | Ensures compliance |
| Revocation Management | Maintains records of revoked certificates | Protects against fraudulent use |
| Public Registry | Maintains database of valid DSCs | Enables verification |
The OCC ensures that all digital signature Nepal certificates comply with standards prescribed under the Electronic Transaction Act, 2063. The official portal is accessible through the Ministry of Communication and Information Technology website.
Nepal recognizes different classes of digital signature Nepal certificates based on use case and identity verification level.
| Certificate Class | Assurance Level | Application | Verification Required |
|---|---|---|---|
| Class 1 DSC | Basic | Individual email signing | Name and email verification |
| Class 2 DSC | Moderate | Business documents, email, encryption | Detailed identity verification |
| Class 3 DSC | Highest | Government tenders, high-value transactions, court filings | In-person verification mandatory |
Class 3 DSCs are required for the most sensitive transactions. These include e-procurement bidding, high-value banking transactions, and certain court filings. The Nepal Certifying Company (NCC) is one of the licensed authorities issuing these certificates.
The digital signature Nepal certificate acquisition process involves several steps. Each step ensures proper identity verification and technical compliance.
Applicants must approach a Certification Authority licensed by the OCC under the Electronic Transaction Act, 2063. The list of approved CAs is available on the official government portal.
The DSC application form provided by the chosen CA must be filled out completely. This form collects personal and professional information required for identity verification.
Identity and address proof documents must be submitted. The specific documents vary by certificate class.
| Document | Individual Applicant | Business Applicant |
|---|---|---|
| Citizenship Certificate or Passport | Required | Required for authorized person |
| Passport-Sized Photograph | Required | Required |
| PAN Card | Optional | Required |
| Company Registration Certificate | Not applicable | Required |
| Authorized Representative Letter | Not applicable | Required |
| Tax Clearance Certificate | Optional | Required for certain transactions |
Verification is conducted as per the class of certificate applied for. Class 3 certificates require in-person verification at the CA office.
A cryptographic key pair (public and private) is generated. The private key remains with the subscriber, while the public key is embedded in the certificate.
The CA issues the DSC after successful verification. The certificate contains the holder's name, public key, CA's digital signature, validity period, and serial number.
The DSC is installed on the subscriber's device or a secure USB token (crypto token). Proper configuration ensures seamless signing functionality. .
The digital signature Nepal framework permits digital signing of most commercial and corporate documents. However, certain categories are excluded by law.
| Permitted Documents | Status | Common Use Cases |
|---|---|---|
| Commercial Contracts | Fully permitted | Sales agreements, service contracts |
| Corporate Filings | Permitted | OCR submissions, annual returns |
| Banking Documents | Permitted with bank policy | Loan applications, online instructions |
| Tax Filings | Permitted | IRD returns, VAT submissions |
| E-Procurement Documents | Required | Government tender submissions |
| Employment Agreements | Permitted | HR contracts, appointment letters |
| Internal Business Memos | Permitted | Corporate communications |
| Excluded Documents | Reason for Exclusion | Legal Basis |
|---|---|---|
| Wills and Testamentary Documents | High sensitivity and fraud risk | ETA 2063 exceptions |
| Negotiable Instruments (Cheques, Drafts) | Banking law requirements | Negotiable Instruments Act |
| Real Estate Transfer Deeds | Registration law requirements | Land Revenue Act |
| Power of Attorney (Property) | Notarization and registration required | Civil Code 2074 |
| Court Pleadings and Affidavits | Physical presence often required | Court rules |
| Marriage and Divorce Documents | Personal status law requirements | Muluki Civil Code |
The exclusion of real estate documents is particularly significant. Sale deeds, mortgage deeds, and lease agreements involving land must be registered at the Land Revenue Office with physical thumbprints and signatures.
The digital signature Nepal framework provides strong evidentiary support for electronically signed documents. Courts in Nepal recognize digital signatures as admissible evidence.
| Evidentiary Aspect | Legal Treatment | Key Consideration |
|---|---|---|
| Electronic Record Status | Same legal status as paper documents | Must be retrievable for subsequent reference |
| Digital Signature Presumption | Presumed valid if from licensed CA | Certificate must be valid at signing time |
| Secure Signature Presumption | Stronger evidentiary weight | Meets Section 6 secure signature criteria |
| Burden of Proof | On the party producing the record | Must prove private key control and certificate validity |
| Authentication Method | CA certificate verification | Hash function comparison required |
Section 7 of the Electronic Transaction Act, 2063 addresses the admissibility of electronic records in legal proceedings. Electronic documents authenticated by a valid digital signature Nepal are admissible as evidence. The court presumes that the digital signature is valid if it was issued by a licensed CA and the certificate was valid at the time of signing.
However, the Nepalese judiciary is still in a transitional phase. Courts now accept digital evidence more readily, but the burden of proof often lies on the person producing the electronic record. This person must prove that the private key was under the sole control of the signer and that the certificate was valid at the time of signing.
The digital signature Nepal framework prescribes penalties for misuse and fraud. These penalties deter unauthorized use and protect the integrity of the PKI system.
| Offense | Penalty | Legal Basis |
|---|---|---|
| Using a Forged Digital Signature | Imprisonment up to 3 years or fine up to NPR 200,000 or both | Section 44, ETA 2063 |
| Unauthorized Access to Private Keys | Imprisonment up to 3 years or fine up to NPR 200,000 or both | Section 45, ETA 2063 |
| Publishing False DSCs | Imprisonment up to 2 years or fine up to NPR 100,000 | Section 46, ETA 2063 |
| Unauthorized Interception of Communications | Imprisonment up to 5 years or fine up to NPR 500,000 | Section 47, ETA 2063 |
| Operating as CA Without License | Imprisonment and fine as prescribed by CCA | Section 48, ETA 2063 |
| Cyber Fraud and Electronic Forgery | Fine up to NPR 100,000 and imprisonment up to 2 years | Section 47, ETA 2063 |
Section 47 of the Electronic Transaction Act is the most-cited provision in cybercrime cases. It punishes the publication of illegal electronic material with up to NPR 100,000 fine, up to 5 years imprisonment, or both. This section has been applied to a wide range of online activities, including defamation, harassment, and fraud.
The digital signature Nepal framework is increasingly integrated into government and business operations.
| Sector | Application | DSC Requirement |
|---|---|---|
| E-Government Services | Online tax filing, company registration, permit applications | Class 2 or 3 |
| E-Procurement | Public Procurement Monitoring Office tender submissions | Class 3 mandatory |
| Banking and Finance | Inter-bank transactions, regulatory submissions | Class 3 for high-value |
| Customs and Trade | E-manifests, e-invoices, e-waybills | Class 2 or 3 |
| Legal Proceedings | E-filing at Supreme Court and High Courts | Class 3 preferred |
| Corporate Compliance | Annual returns, board resolutions, shareholder communications | Class 2 |
The Nepal Rastra Bank has issued directives requiring banks and financial institutions to use digital signature Nepal for certain electronic filings and communications. The Public Procurement Monitoring Office (PPMO) mandates Class 3 DSCs for all e-procurement activities.
Digital signature Nepal certificates are issued for fixed validity periods. Proper renewal and revocation procedures ensure continuous legal validity.
| Process | Timeline | Requirements |
|---|---|---|
| Renewal Application | At least 30 days before expiry | Updated documents, renewal fee |
| Certificate Revocation | Immediate upon discovery | Key compromise, false information, court order |
| CRL Update | Within specified timeframe | Publicly accessible revocation list |
| Re-issuance | After revocation or expiry | Fresh application and verification |
Upon revocation, the CA updates the Certificate Revocation List (CRL). Any party relying on a revoked certificate does not receive legal protection under the Electronic Transaction Act, 2063.
Despite the digital signature Nepal legal framework, several common mistakes undermine the validity of electronically signed documents.
| Mistake | Consequence | Prevention |
|---|---|---|
| Using Unlicensed E-Signature Tools | No statutory signature presumption; challengeable in court | Use only OCC-licensed CAs |
| Treating Scanned Signatures as Digital Signatures | No legal validity under Sections 4-6 | Use proper PKI-based signing |
| Sharing Private Keys | Liability shifts to subscriber for forged transactions | Safeguard private key exclusively |
| Ignoring Certificate Expiry | Signature invalid after expiry date | Renew before expiration |
| Failing to Report Key Compromise | Continued liability for unauthorized use | Report immediately to CA |
| Using International Platforms Without CA License | Treated as evidence of intention only | Verify CA licensing status |
The single most expensive mistake is signing in a way that is not Section 4-compliant. If a digital signature Nepal is not generated through asymmetric cryptography and an OCC-licensed certificate, it should not be relied upon for any contract that would not also be signed on paper.
The digital signature Nepal framework distinguishes between digital signatures and general electronic signatures. This distinction has important legal consequences.
| Aspect | Digital Signature (ETA 2063) | General Electronic Signature |
|---|---|---|
| Technical Basis | Asymmetric cryptosystem and hash function | Any electronic mark or symbol |
| CA Requirement | Must be from OCC-licensed CA | No CA requirement |
| Legal Presumption | Strong statutory presumption of validity | Weak or no presumption |
| Court Admissibility | High evidentiary weight | Treated as evidence of intention |
| Security Level | High (tamper-evident, non-repudiable) | Variable |
| Government Acceptance | Required for official filings | Limited acceptance |
General electronic signatures, such as typed names or scanned images, are recognized as evidence of intention. However, they do not enjoy the secure signature presumption under Section 6 of the Electronic Transaction Act.
Yes. Digital signature Nepal is legally valid under the Electronic Transaction Act, 2063. Section 3 grants electronic records the same legal status as paper documents. Section 4 attaches the same legal effect to a digital signature as a handwritten signature, provided it meets technical requirements.
A digital signature Nepal must be created using an asymmetric cryptosystem and authenticated through a Digital Signature Certificate from an OCC-licensed certifying authority. The private key must be under the exclusive control of the signer, and the certificate must be valid at the time of signing.
Most international e-signature platforms are not OCC-licensed. Their output is treated as evidence of intention rather than a statutory signature under digital signature Nepal law. For legally binding documents, use a CA licensed by the Office of Controller of Certification.
A digital signature Nepal certificate is generally valid for one to three years from the date of issuance. Certificate holders must apply for renewal before expiry to maintain uninterrupted validity.
No. Digital signature Nepal has limited application in immovable property transactions. Sale deeds, mortgage deeds, and lease agreements must be registered at the Land Revenue Office with physical presence and handwritten signatures.
The subscriber must immediately report the compromise to the Certifying Authority. The CA will revoke the certificate and update the Certificate Revocation List. Failure to report may shift liability for unauthorized transactions to the subscriber.
Yes. Section 3 of the Electronic Transaction Act, 2063 gives electronic records the same legal status as paper documents. The Evidence Act, 2031 and the Civil and Criminal Procedure Codes, 2074 admit them in court. The weight given depends on authentication and integrity preservation.
Under digital signature Nepal law, using a forged digital signature can result in imprisonment up to 3 years, a fine up to NPR 200,000, or both. Operating as a certifying authority without a license also carries criminal penalties.
Valid digital signature Nepal certificates can be verified through the public registry maintained by the Office of Controller of Certification. The Certificate Revocation List (CRL) should also be checked to ensure the certificate has not been revoked.
Yes. As of 2026, the Electronic Transaction Act, 2063 remains the controlling cyber and digital-transactions law in Nepal. The Information Technology and Cyber Security Bill intended to replace it has not yet been enacted by Parliament.
Navigating digital signature Nepal legal requirements can be complex. Attorney Nepal Pvt Ltd provides expert legal assistance for businesses and individuals. Our services include:
Contact Attorney Nepal Pvt Ltd today for professional legal support in digital signature and electronic transaction matters.
Disclaimer: This blog is for informational purposes only. It does not constitute legal advice. For specific legal matters related to digital signature Nepal, consult a qualified legal professional. Laws and regulations may change over time. Verify all information with official sources before taking action.
July 07, 2026 - BY Admin