Trust Center

In trust we serve

For Connective your document & identity security is a top priority. So everyday we strive to stay compliant with the most stringent standards and regulations.

Connective solutions are built with compliance at the core

Connective aims to make your digital experience safe and secure and intuitive. So every day we ensure that our security is parallel with industry standards and compliance without having to compromise on user experience. Connective meets and exceeds some of the most stringent US, EU, and global security standards: GDPR, eIDAS, UETA Act, e-Sign Act.

UETA Act & eSign Act
Trust Service Provider
Microsoft Azure
eIDAS compliant



As of May 25, 2018 the `General Data Protection Regulation’ or GDPR is enforced across all EU states. This European directive on data protection is applicable to all companies processing personal data of EU citizens (which means all data with which a person can be identified).

On a daily basis Connective ensures all GDPR compliance requirements are met well.


The eIDAS Regulation (no 910/2014) is an abbreviation which stands for electronic Identification, Authentication and trust Services. It is a European regulation which went into force on the first of July 2016.

Based on an analysis of DLA Piper, Connective eSignatures is an electronic signature solution that allows one to manage an end-to-end signing process compliant with all types of electronic signatures available under the eIDAS Regulation.

UETA Act & e-Sign Act

The United States, for being a federal republic composed of 50 states, has both federal and state regulations. Therefore, there are two laws that regulate the electronic signature in the USA: UETA (Uniform Electronic Transactions) Act & e-Sign Act.

With the Connective´s solutions you can electronically sign while exceeding the requirements of the ESIGN Act and the Uniform Electronic Transactions Act in the United States.

TSP Certifications & Documents

TSP Certification

The eIDAS European regulation establishes the requirements that must be met by the Trust Services providers (TSP) that offer trust services such as electronic signature, website authentication, electronic registered mail, etc. within the internal market.

Connective received the TSP certificate from LSTI, which is registered on the European Commission official list of Conformity Asssessment Bodies (CABs) accredited to carry out eIDAS audits.

Go to TSP certificate
Signature Validation Service Practice Statement

This document describes what practices are in place for the provisioning of the default Connective Signature Validation Service (SVS).

The document is structured as described by Electronic Signatures and Infrastructures (ESI); Policy requirements for TSP providing signature validation services (ETSI TS 119 441 V1.1.1) Annex A.

View Practice Statement
Signature Validation Service Policy

This document describes the requirements that are being followed for the default Connective Signature Validation Service.

This document is structured as described by ‘Electronic Signatures and Infrastructures (ESI);Signature Policies; Part 1: Building blocks and table of contents for human readable signature policy documents’ (ETSI TS 119 172-1 V1.1.1).

View Service Policy

Download free whitepaper

Your complete guide about United States´ & European law applicable to electronic signatures

Including an assessment by DLA piper of Connective eSignatures in relation to eIDAS, UETA & eSign Act.


Data Center Security

Microsoft Azure

Connective is hosted in the multiple data centers of Microsoft Azure across the globe for high availability. By hosting in Microsoft Azure we simplify scalability, release management and certificate management. Through working in hybrid clouds, we ensure compliance with EU data privacy legislation

More information about Microsoft Azure
Connective GDPR Personal Data Processing


Processing of Personal Data

Depending on the services, Connective processes different types of personal data with various retention periods. A detailed overview of the personal data being processed and the respective retention periods is available on our Data Processing page.

More information about Personal Data processing in Connective services
Technical and Organizational Measures

The 2016/679 European regulation of 27th of April 2016 ( known as General Data Protection Regulation or GDPR ) specifies that protecting personal data requires taking appropriate technical and organization measures to ensure a level of security
appropriate to the risk (Article 32).

This document describes the technical and organizational measures taken by
Connective to comply with Article 32.

Consult Connective TOM Statement
digitale handtekeningen voor Microsoft Dynamics


Sub-processors engaged by Connective

A Sub-processor is a third-party data processor engaged by Connective who has or potentially will have access to or process Personal Data in respect of the performance of the License Terms and Conditions.

More information about sub-processors

For any questions regarding data protection, please contact our Data Protection Office.

For any questions regarding TSP, please contact our Trust Service Board.

This could interest you too

Requirements to find a trustworthy Trust Service Provider There are plenty of high-tech providers when it comes to electronic signatures and identity services. Most of them offer intuitive and compliant solutions. 
The power of Digital Signatures? Find out what it is for you! Digital Signatures have become the new normal, however there are still many misconceptions about them. Does a digital signature have the same legal value as written signatures? What is the importance of identification in a signature session? Does...