Aadhaar eSign: How to Digitally Sign Documents Using Aadhaar in India

Every year, millions of Indians spend hours printing documents, finding stamp paper vendors, and visiting notary offices just to put a signature on a legal agreement. Aadhaar eSign has changed this entirely. Using your Aadhaar number and a one-time password (OTP) sent to your registered mobile, you can now sign any PDF document with full legal validity, all from your phone or laptop. No USB tokens, no physical paperwork, no courier costs.

This guide covers everything you need to know about Aadhaar-based electronic signatures: the legal framework that makes them valid, how the technology works, which documents qualify, what it costs, and how to get started. Whether you are a business owner onboarding clients remotely, an HR manager issuing offer letters, or a tenant signing a rent agreement, this is the definitive resource for Aadhaar eSign in India.

What Is Aadhaar eSign?

Aadhaar eSign is an electronic signature service that uses your Aadhaar identity for authentication. When you "eSign" a document, the system verifies your identity through UIDAI's authentication infrastructure (typically via OTP to your Aadhaar-linked mobile number), then generates a one-time cryptographic key pair to create a legally binding digital signature on the document. The entire process takes under two minutes.

Unlike scanned signatures or typed name fields, an Aadhaar eSign is cryptographically embedded into the PDF. It cannot be copied to another document, and any attempt to alter the signed document will invalidate the signature. This makes it far more secure than physical signatures, which can be forged or disputed.

The service is governed by Section 3A of the Information Technology Act, 2000 and the Electronic Signature Rules, 2015 (Gazette Notification GSR 61(E)). It is operated through licensed eSign Service Providers (ESPs) empanelled by the Controller of Certifying Authorities (CCA), such as eMudhra, CDAC, and Protean (formerly NSDL).

How Aadhaar eSign Works: The Technical Process

The Aadhaar eSign process involves four entities working together: the Application Service Provider (ASP) where you upload and view documents, the eSign Service Provider (ESP) licensed by CCA, the Certifying Authority (CA) that issues the signing certificate, and UIDAI that authenticates your identity.

Here is what happens when you sign a document:

1. Document Upload and Hashing: You upload your PDF to an ASP platform like SignSetu. The platform computes a SHA-256 cryptographic hash of the document. This hash is a unique digital fingerprint; even changing a single character would produce a completely different hash.
2. Aadhaar Authentication: You enter your 12-digit Aadhaar number. The ESP sends an authentication request to UIDAI, which dispatches a one-time password (OTP) to your Aadhaar-linked mobile number. You enter the OTP for verification.
3. Key Pair Generation: Once UIDAI confirms your identity, the ESP generates a one-time-use asymmetric key pair (a public key and a private key) inside a Hardware Security Module (HSM). The private key never leaves this tamper-proof hardware.
4. Certificate Issuance: The CA issues an Electronic Signature Certificate linked to your Aadhaar-verified identity. This certificate has a validity of approximately 30 minutes, just enough to complete the signing.
5. Signature Creation: The ESP uses your private key to encrypt the document hash, creating the digital signature. The signed hash and the certificate are returned to the ASP.
6. Embedding and Key Destruction: The ASP embeds the signature and certificate into the PDF. Your private key is immediately destroyed on the HSM. It can never be reused, even by the ESP.

The result is a PDF with a cryptographically sealed signature that proves: (a) who signed it, (b) when they signed it, and (c) that the document has not been altered since signing. Any PDF reader that trusts India's CCA root certificate will show the signature as valid.

Legal Validity of Aadhaar eSign in India

The legal foundation for Aadhaar eSign rests on multiple statutes. Understanding these is important if you plan to use eSigned documents for contracts, compliance, or court proceedings.

IT Act, 2000 (Amended 2008)

Section 3A of the Information Technology Act, 2000, inserted by the IT Amendment Act of 2008, establishes the legal framework for electronic signatures. It states that an electronic signature is reliable if it is unique to the signatory, capable of identifying them, created under their sole control, and linked to the electronic record such that any alteration would invalidate the signature.

Section 5 grants electronic signatures the same legal effect, validity, and enforceability as handwritten signatures, provided the method is prescribed by the Central Government.

Electronic Signature Rules, 2015

The Central Government issued Gazette Notification GSR 61(E) on 28 January 2015, formally notifying Aadhaar e-KYC based electronic signatures as a valid technique under Schedule II of the IT Act. This notification is the specific legal basis that makes Aadhaar eSign lawful.

Evidence Law

Under Section 63 of the Bharatiya Sakshya Adhiniyam (BSA), 2023 (which replaced Section 65B of the Indian Evidence Act, 1872), eSigned documents are admissible as evidence in court proceedings. Section 85B of the Evidence Act (now applicable through transitional provisions) creates a presumption that electronic signatures are authentic unless proven otherwise. The Supreme Court clarified in Arjun Panditrao Khotkar v. Kailash Kushanrao Gorantyal (2020) that a Section 65B(4) certificate is mandatory for admissibility of electronic evidence.

Section 67A of the IT Act provides that in any proceedings involving a secure electronic signature, the court shall presume that it was affixed by the subscriber with the intention of signing or approving the electronic record. This shifts the burden of proof to the person challenging the signature's authenticity.

Documents You Can eSign with Aadhaar

Any document that is not excluded under the First Schedule of the IT Act, 2000, can be legally signed using Aadhaar eSign. This covers the vast majority of agreements and contracts used in everyday business and personal transactions.

Commonly eSigned Documents

• Rent Agreements and Leave & License Agreements: The most popular use case. Landlords and tenants across Maharashtra, Delhi, Karnataka, and other states use Aadhaar eSign combined with eStamp paper for fully online execution. Create a rent agreement on eSahayak.
• Employment Contracts: Offer letters, appointment letters, non-compete agreements, relieving letters, and experience certificates. Particularly valuable for remote hiring across cities.
• NDAs and Confidentiality Agreements: Freelancers, consultants, and businesses use Aadhaar eSign for quick NDA execution without courier delays.
• Service and Vendor Agreements: B2B contracts, freelance agreements, consultancy agreements, and partnership deeds.
• Financial Documents: Loan sanction letters, insurance policy documents, mutual fund application forms, bank KYC documents, and account opening forms.
• Affidavits and Declarations: Self-attested affidavits, consent forms, undertakings, and statutory declarations (though court-filed affidavits may additionally require notarization).
• HR and Compliance Documents: Employee handbooks, policy acknowledgments, training completion certificates, and compliance declarations.

SignSetu offers free templates for many of these document types, including rent agreements, NDAs, offer letters, service agreements, and more. Each template is designed for Indian legal requirements and can be eSigned directly after customization.

Documents That Cannot Be eSigned

Under Section 1(4) read with the First Schedule of the Information Technology Act, 2000, five categories of documents are excluded from electronic execution entirely. Neither Aadhaar eSign nor DSC can be used for these.

1. Negotiable Instruments: Promissory notes and bills of exchange under the Negotiable Instruments Act, 1881 (except cheques processed via the Cheque Truncation System).
2. Powers of Attorney: Documents granting power of attorney under the Powers of Attorney Act, 1882. These require physical signatures and, in many jurisdictions, notarization or registration.
3. Trust Deeds: Any document that creates, assigns, or extinguishes rights, title, or interest in trust property.
4. Wills and Testamentary Documents: Wills, codicils, and any testamentary disposition under the Indian Succession Act, 1925.
5. Contracts for Sale of Immovable Property: Any contract for sale, transfer, or conveyance of immovable property or interest therein under the Registration Act, 1908.

Where DSC Is Mandatory (Aadhaar eSign Not Accepted)

Certain government portals and regulatory filings specifically require a Digital Signature Certificate (DSC) and do not accept Aadhaar eSign. These include:

• MCA/ROC filings (company incorporation, annual returns, charge creation)
• GST registration and return filings for companies and LLPs
• Income Tax return filings for companies and firms subject to audit under Section 44AB of the Income Tax Act
• Patent and trademark filings with the IP Office
• SEBI filings for listed companies
• e-Tendering on government procurement portals like GeM and CPPP

Aadhaar eSign vs. Digital Signature Certificate (DSC): Which Do You Need?

Both Aadhaar eSign and DSC produce legally valid digital signatures, but they serve different use cases. Here is how they compare across the parameters that matter most.

Authentication and Hardware

Aadhaar eSign requires no hardware at all. You authenticate using your Aadhaar number and an OTP sent to your registered mobile. The entire process is cloud-based. A DSC, on the other hand, is stored on a physical USB crypto token. You must plug the token into your computer and enter a PIN each time you sign. If you lose the token, you need to apply for a new one.

Key Lifecycle

Aadhaar eSign generates a fresh key pair for every signing transaction. The private key exists only inside a Hardware Security Module for the few seconds needed to create the signature, then it is destroyed permanently. A DSC key pair is created once and stored on the USB token for 1 to 3 years. The key is reusable for unlimited signatures during the validity period.

Cost Structure

Aadhaar eSign operates on a pay-per-signature model. Prices range from Rs 5 to Rs 75 per signature depending on the platform and volume. SignSetu charges Rs 15 per signature with a credit-based system and no monthly subscriptions. A DSC costs Rs 1,500 to Rs 3,000 upfront for a 2-year certificate (including the USB token), with unlimited signatures during the validity period.

Break-even analysis: If you sign fewer than 100 to 150 documents per year, Aadhaar eSign is cheaper. If you sign 200 or more documents per year, a DSC becomes more economical per signature. However, DSC requires the physical token, making it impractical when you need signatures from clients, tenants, or employees who do not own a DSC.

Acceptance

Aadhaar eSign is accepted for all private contracts and an expanding list of government platforms. DSC is accepted everywhere, including MCA, GST, Income Tax, SEBI, and e-Tendering portals. For purely private agreements (rent agreements, NDAs, service contracts, employment letters), both are equally valid.

How to eSign a Document Using Aadhaar: Step-by-Step

Signing a document with Aadhaar is straightforward. Here is the process using SignSetu, a platform built specifically for Aadhaar-based document signing.

1. Upload Your PDF: Go to signsetu.in and upload the PDF document you want to sign. This can be a rent agreement, NDA, offer letter, or any document that is eligible for eSign.
2. Add Signers: Enter the details of each person who needs to sign. For multi-party documents (like a rent agreement between landlord and tenant), add all signers with their names, email addresses, and Aadhaar numbers.
3. Place Signature Fields: Mark where each signer needs to sign on the document. You can also add date fields and other form fields.
4. Send for Signing: Each signer receives a notification. When they open the signing link, they authenticate using their Aadhaar OTP. The platform handles the entire ESP and CA interaction in the background.
5. Download the Signed PDF: Once all parties have signed, the fully executed document is available for download. The PDF contains embedded digital signatures from each signer, complete with timestamps and certificate details.

The entire process typically takes under two minutes per signer. For commonly used documents, SignSetu provides free templates for rent agreements, NDAs, offer letters, service agreements, affidavits, and more. You can also read their detailed Aadhaar eSign guide for a walkthrough with screenshots.

Security Features of Aadhaar eSign

Aadhaar eSign is built on a robust cryptographic infrastructure that makes it more secure than physical signatures in several measurable ways.

Cryptographic Standards

The signing process uses RSA 2048-bit asymmetric encryption for the digital signature and SHA-256 for document hashing. Data in transit is protected by TLS encryption. All key operations happen inside FIPS 140-2 Level 2 certified Hardware Security Modules at the ESP, ensuring the private key is never exposed to software.

Tamper Detection

Once a document is signed, the cryptographic hash is embedded within the PDF. If anyone modifies even a single character after signing, the hash verification will fail, and the signature will display as "invalid" in any PDF reader. This provides mathematical proof that the document has not been altered since signing.

One-Time Key Architecture

Unlike DSC where the same key is reused for years, Aadhaar eSign generates a unique private key for each transaction. The key exists only for the few seconds needed to create the signature, then it is permanently destroyed on the HSM. This means that even if an attacker somehow compromised the ESP's infrastructure, they could not forge past signatures because the keys no longer exist.

Audit Trail

Every eSign transaction generates a comprehensive audit trail that records the timestamp of signing, the authentication method used (OTP, biometric, or face), the signer's Aadhaar-verified identity, the document hash, and the ESP and CA certificate details. This audit trail is compliant with Section 65B of the Indian Evidence Act (now Section 63 of BSA, 2023) and can serve as evidence in legal proceedings.

Cost of Aadhaar eSign in 2026

Aadhaar eSign pricing varies by platform, but the overall model is pay-per-signature with no recurring subscriptions. Here is what you can expect.

Per-Signature Pricing

At the API level, ESPs charge Rs 5 to Rs 20 per signature depending on volume commitments. End-user platforms typically charge Rs 15 to Rs 75 per signature. SignSetu offers a credit-based model at Rs 15 per signature with no monthly fees. You purchase credits upfront and use them as needed, making it ideal for individuals and small businesses that sign documents occasionally.

Comparison with Alternatives

A physical signature process for a rent agreement typically involves: stamp paper purchase (Rs 100 to Rs 500 depending on the state and tenure), notary fees (Rs 100 to Rs 500), printing costs, and travel time. The total easily crosses Rs 500 to Rs 1,000 per agreement when you account for time and transport. An Aadhaar eSign on SignSetu costs Rs 15 per signer, with eStamp paper available through eSahayak. The combined cost and time savings are substantial.

Common Use Cases for Aadhaar eSign

Rent Agreements

Aadhaar eSign combined with eStamp paper enables fully online rent agreement execution. In Maharashtra, you can create a Leave and License Agreement in Mumbai without visiting a notary. In Delhi, Karnataka, UP, and Tamil Nadu, the same process applies with state-specific stamp duty rates. The agreement is legally valid under Section 5 of the IT Act, and the eSigned PDF serves as proof of the agreement.

Employment and HR Documents

HR teams use Aadhaar eSign for remote onboarding: offer letters, appointment letters, NDAs, employee handbooks, and policy acknowledgments. When an employee leaves, the relieving letter and experience certificate can also be eSigned. This eliminates the need for physical document exchange, which is critical for distributed teams.

Business Contracts

NDAs, vendor agreements, service contracts, partnership deeds, and consultancy agreements are all eligible for Aadhaar eSign. Startups and SMEs benefit the most, as they often deal with counterparties who do not have DSCs. Download a free NDA template or service agreement template from SignSetu to get started.

Banking, Insurance, and Financial Services

Banks, NBFCs, and insurance companies are among the largest adopters of Aadhaar eSign. Loan sanction letters, KYC documents, account opening forms, insurance policy documents, and claim forms are all eSigned at scale. One major private bank processes over 2 million eSigned transactions per quarter using this technology.

Free Document Templates for Aadhaar eSign

If you need a quick starting point, SignSetu offers free legal document templates designed for Indian requirements. Each template includes the standard clauses required by law and can be customized before signing.

• Rent Agreement (11-month Leave & Licence for Maharashtra, standard rental for other states)
• Non-Disclosure Agreement (unilateral and mutual versions)
• Offer Letter (with salary, probation, and notice period clauses)
• Service Agreement (IP ownership, payment terms, deliverables)
• Consultancy Agreement
• Vendor Agreement
• Experience Letter

All templates are available as free PDF downloads. You can upload them to SignSetu and get them eSigned using Aadhaar immediately.

Recent Developments in Aadhaar eSign (2025 and 2026)

The Aadhaar eSign ecosystem is evolving rapidly. Several developments in the past year are worth noting.

• Cloud-Based Signing Push: The CCA is transitioning from physical USB e-Tokens to cloud-based signing solutions. Private keys can now be stored in CCA-approved cloud Hardware Security Modules, making the infrastructure more scalable.
• Aadhaar Authentication for Private Sector: UIDAI has opened Aadhaar authentication to private sector entities, including banks, fintech companies, telecom operators, and NBFCs. This significantly expands who can offer Aadhaar eSign services.
• BSA 2023 Implementation: The Bharatiya Sakshya Adhiniyam, 2023, effective from 1 July 2024, modernized the evidence framework. It introduced mandatory hash values for electronic evidence and a structured two-part certification format (under Section 63), strengthening the legal backbone for eSigned documents.
• Digital India Growth: Over 90% of government contracts are now processed electronically, per MeitY data. India's digital signature market is projected to grow at a CAGR of 18.2%.

CCA-Empanelled eSign Service Providers

Only ESPs empanelled by the Controller of Certifying Authorities can facilitate Aadhaar eSign. As of 2026, the empanelled providers are:

1. eMudhra Limited: One of the largest CAs in India, providing eSign infrastructure to platforms like SignSetu.
2. CDAC (Centre for Development of Advanced Computing): A government research organization that provides eSign services primarily to government departments.
3. Protean eGov Technologies (formerly NSDL): Provides eSign services for financial sector applications.
4. (n)Code Solutions: A Gujarat-based CA offering eSign and DSC services.
5. Capricorn Identity Services: Provides both DSC and eSign services.
6. Sify Technologies: India's first licensed Certifying Authority under the IT Act, 2000.

When choosing an eSign platform, verify that it uses an ESP from this list. SignSetu uses eMudhra's eSign infrastructure, one of the most widely trusted providers in the ecosystem.