Currently, personnel serving a public administration carry out their functions electronically. Digital certificates allow these tasks to be carried out securely because they prove our identity. Their use is equivalent to a handwritten signature.

Furthermore, in the case of certificates for public employees and workers, it also identifies them as professionals of the entity in their electronic relationships.

The AOC Consortium is a trusted provider recognized by the Ministry for Digital Transformation and Public Service. AOC issues, among others, the T-CAT in different formats (card or software) for public administration personnel.

As the holder of your T-CAT, you are responsible for its use. All authentications and signatures (obligations, declarations, procedures, etc.) made with this certificate will be linked to you, with full legal validity.

In this context, where data protection and security have become fundamental concerns, we provide you with a series of recommendations to avoid security problems.

Recommendations and good practices

Your T-CAT is personal and non-transferable.

Your T-CAT, like any other digital certificate, is personal and non-transferable, it is your "self" on the network; if you leave it with other people, you are facilitating a possible impersonation of your identity that can have important consequences.

  • Do not leave your T-CAT with other people to use on your behalf (to process, sign, etc.).
  • As the certificate holder, you will be responsible for the signatures and authentications carried out with the T-CAT.
  • Do not share your PIN and PUK (if the certificate has one) with anyone.
  • Never store the certificate with the PIN and PUK together.
  • Before using your certificate, make sure you know exactly what you are signing, as once signed it will have full legal validity.

Use your certificate in secure environments

  • Before installing your T-CAT, check that your computer's operating system is up to date (this is a way to avoid possible security holes).
  • You must follow the installation instructions provided by the provider.
  • Keep your T-CAT in a safe place. Whether it's on a card or the T-CAT installation file in software. Avoid saving the file on a shared computer, USB or hard drive without a password.
  • Install it on your computer in your individual password-protected session.
  • Delete the T-CAT P certificate file if you change computers.

Life cycle of your T-CAT

  • The validity of the T-CAT is 4 years and you will receive an email 60 and 30 days before it expires. Contact the Digital Certification Service Manager of your organization to ensure that the renewal is managed.
  • If you detect that someone is misusing your T-CAT, revoke it as quickly as possible.