QWAC Certificates for Individuals

Sectigo’s eIDAS-compliant Qualified Website Authentication Certificates (QWACs) for individuals provide secure encryption, authentication, and identity verification for personal websites. Available for single or multi-domain use, they meet eIDAS regulations across the European Union.

700K
businesses on the

Sectigo platform
100M
certificates issued worldwide
#1
market leader

in SSL certificates
40%
of Fortune 1000

companies use Sectigo

Item 1 of 4

Sectigo QWAC Natural

For one website. Delivered digitally.

Sectigo QWAC Natural Multi-Domain License

Up to 3 websites. Delivered digitally.

4.2

3,629 reviews on Trustpilot

As of February 2025

Trusted leader in SSL/TLS Certificates

Item 1 of 10

QWACs for Individuals

QWACs for natural persons (individuals) are for those who want to for example, secure their personal websites
QWACs are SSL/TLS certificates that encrypt sensitive data and provide extended validation to identify EU organizations to users.
QWACs are compatible with any SSL/TLS-capable server
QWACs require validation of both the identity of the natural person ordering the certificate, and their control of the domain name for the certificate.

About

Qualified Web Authentication Certificates

Sectigo, a Qualified Trust Service Provider (QTSP), offers QWACs for natural persons which are SSL/TLS certificates issued to individuals for use on a personal website. They provide end-to-end data encryption between servers and clients. They also attest to the fact that behind a website or server there is a natural or legal person identifiable by trustworthy information. The certificates utilize advanced encryption algorithms to secure data and provide extended validation to identify EU organizations to users.

Validation and Issuance - IMPORTANT

Getting Your Qualified Certificate

Once you order a certificate, you will be guided through the steps of passing the necessary validation checks so that your certificate can be issued. It's important to understand the requirements for validation so your certificate can be issued promptly.

You will receive the Subscriber Agreement email and will need to follow the instructions in the email to submit the agreement. After submission, the Complete Your eIDAS Request page will be displayed. This is where you can monitor the progress of your order. The page shows all the steps that need to be completed for Sectigo to be able to issue your QWAC certificate.

Submitting Your CSR

When a CSR is required, it is submitted with the order. A CSR is only needed for QWACs or certificates that will be installed by you on a hardware security model (HSM) or other device.

Domain Control Validation

For QWACs only, proof is required that you control the domain(s).

Any public domain must pass Domain Control Validation (DCV) before Sectigo can issue certificates to it. DCV requires you to prove you have control of the primary domain.

The following are possible methods of completing DCV:

Email - Sectigo sends a challenge-response email to a mail address on the domain. You can choose the email address during setup. The email contains a link to validate ownership of the domain.
DNS CNAME - A hash value must be entered as DNS CNAME for the domain. Sectigo validates by checking the DNS CNAME of the domain.
HTTP/HTTPS File - A .txt file is placed on the root of the web server. Sectigo checks for the presence of the file.

For multi domain QWACs, all the requested domains must pass DCV.

See also the Sectigo Knowledgebase article Domain Control Validation (DCV) Methods.

Face-to-Face Verification

The individual submitting the order must provide proof of their identity.

Face-to-face verification is used to verify your identity. This requires completion of the face-to-face form that will be provided to you by Sectigo, along with instructions for completing the form. The completed form must be notarized and accompanied by: