Open Documentation Menu

Legal & Data protection

Is d.velop sign data protection compliant according to the GDPR?

Yes, d.velop sign meets the requirements of the General Data Protection Regulation.

We can prove this with an expert opinion: Expert opinion on the GDPR compliance of d.velop sign.

Can I archive my documents permanently in d.velop sign?

No, from 01.03.2022 documents are stored in d.velop sign for a maximum of 12 months from the upload date and are then automatically deleted.

Do public bodies have to

All public sector bodies must be able to accept, process and verify at least advanced electronic XML, CMS, PDF signatures and corresponding seals of conformance levels B, T or LT as well as associated containers in accordance with ASiC (ETSI EN 319 162-1) in the formats defined in implementing act [(EU) 2015/1506].

Are the documents end-to-end encrypted?

No, as the data and documents are processed on the same server and are therefore not transferred.

What data is stored by d.velop sign?

Users have the option of signing a document with d.velop sign. Thus, d.velop sign stores and processes these files, which are currently PDF and XML documents.

The following personal data is collected and stored for the signature of the documents:

  • Name

  • First name

  • E-mail address(es)

  • Signature image of the user

  • mobile phone number in the future, if applicable

In addition, the use of d.velop sign generates settings data, process data, history data and billing data.

Which country codes does sign-me support?

Here you will find a list of the area codes supported by sign-me.

Is the stored data encrypted?

Yes, all documents and data are encrypted at rest and stored on a memory or in a database (AES-256).

Are documents

No, only a hash value of the document is transmitted to trust service providers. The document itself is not sent and does not leave d.velop sign.

How can I protect a document with a password?

Once you have prepared the fields for signing, you can specify under Settings that the document should be protected with a password. The password must consist of at least eight characters.

802992770.png

The receiving person must now enter the previously defined password before signing. This must be passed on by the initiating person to the receiving person.

How long are documents stored in d.velop sign?

If you click on delete in d.velop sign, the documents and data are logically deleted immediately after the deletion event. We reserve the right to keep a backup of the data for 30 days in case of disaster recovery.

Documents that you have uploaded in your d.velop sign application and that have been there for more than 1 year since the respective upload date are automatically deleted from d.velop sign. These can be signed documents but also unsigned documents. After one year, these documents are no longer displayed in d.velop sign, can no longer be retrieved and are also not available in the backup.

The new deletion cycle of 1 year applies from 01.03.2022. Therefore, please store all documents older than 1 year locally or in a separate archiving software by 28.02.2022 at the latest in order to save them for the long term.

We recommend d.velop documents for this. The solutions can be seamlessly integrated with each other.

How is the transportation of data and documents protected?

Transport encryption is carried out using https.