Yes, d.velop sign meets the requirements of the General Data Protection Regulation.

We can prove this with an expert opinion: Expert opinion on the GDPR compliance of d.velop sign.

No, from 01.03.2022 documents are stored in d.velop sign for a maximum of 12 months from the upload date and are then automatically deleted.

All public sector bodies must be able to accept, process and verify at least advanced electronic XML, CMS, PDF signatures and corresponding seals of conformance levels B, T or LT as well as associated containers in accordance with ASiC (ETSI EN 319 162-1) in the formats defined in implementing act [(EU) 2015/1506].

No, as the data and documents are processed on the same server and are therefore not transferred.

Users have the option of signing a document with d.velop sign. Thus, d.velop sign stores and processes these files, which are currently PDF and XML documents.

The following personal data is collected and stored for the signature of the documents:

In addition, the use of d.velop sign generates settings data, process data, history data and billing data.

Here you will find a list of the area codes supported by sign-me.

Yes, all documents and data are encrypted at rest and stored on a memory or in a database (AES-256).

No, only a hash value of the document is transmitted to trust service providers. The document itself is not sent and does not leave d.velop sign.

Once you have prepared the fields for signing, you can specify under Settings that the document should be protected with a password. The password must consist of at least eight characters.

The receiving person must now enter the previously defined password before signing. This must be passed on by the initiating person to the receiving person.

If you click on delete in d.velop sign, the documents and data are logically deleted immediately after the deletion event. We reserve the right to keep a backup of the data for 30 days in case of disaster recovery.

Documents that you have uploaded in your d.velop sign application and that have been there for more than 1 year since the respective upload date are automatically deleted from d.velop sign. These can be signed documents but also unsigned documents. After one year, these documents are no longer displayed in d.velop sign, can no longer be retrieved and are also not available in the backup.

The new deletion cycle of 1 year applies from 01.03.2022. Therefore, please store all documents older than 1 year locally or in a separate archiving software by 28.02.2022 at the latest in order to save them for the long term.

We recommend d.velop documents for this. The solutions can be seamlessly integrated with each other.

Transport encryption is carried out using https.