(ii) the circumstances known to the sig
natory give rise to a substantial risk
that the signature creation data may
have been compromised;
(c) where a certificate is used to support the
electronic signature, exercise reasonable
care to ensure the accuracy and
completeness of all material represent
ations made by the signatory that are
relevant to the certificate throughout its
life cycle or that are to be included in the
certificate.
(2) A signatory shall bear the legal consequences
of his or her failure to satisfy the requirements of
subsection (1).
Conduct of the
certifica-tion
service provider
194. (1) Where a certification service provider
provides services to support an electronic
signature that may be used for legal effect as a
signature, that certification service provider shall
(a) act in accordance with representations
made by it with respect to its policies and
practices;
(b) exercise reasonable care to ensure the
accuracy and completeness of all material
representations made by it that are relevant
to the certificate throughout its life cycle or
that are included in the certificate;
(c) provide reasonably accessible means that
enable a relying party to ascertain from the
certificate
(i) the identity of the certification service
provider,
(ii) that the signatory that is identified in
the certificate had control of the
signature creation data at the time
when the certificate was issued,
(iii) that signature creation data were valid
187