Learn how we process and protect your personal data
and which initiatives we take related to data protection.
At Connective we highly value the privacy of our customers, partners and users. Data protection is and remains a top priority for Connective. Learn more on the initiatives we take to protect your personal data.
Processing of personal data
Depending on the services you use, Connective processes different types of personal data with various retention periods. We made a detailed overview of the personal data being processed and the respective retention periods.
Sub-processors & subcontractors
Connective engages various Sub-processors and subcontractors for making available different functionalities within our solutions. For a full overview visit our Sub-processors page.
Data Subject Access Request
You have the right to request Connective more information on how we process your personal data. Fill in the form and our DPO Office will further follow-up your request.
Data Protection FAQ´s
When offering our services Connective is generally considered as a data processor. This is why you will be requested to sign a Data Processing Agreement.
Connective’s services are by default hosted by Microsoft Azure in co-location facilities in Europe. The data centers we rely on are located in The Netherlands (Amsterdam) and Ireland (Dublin).
Connective engages different sub-processors when offering its services. Such sub-processors are involved to make available specific functionalities or services included within our solutions. More details and identification of the sub-processors involved (including the procedure which applies when a new sub-processor would be engaged by Connective) is available via our Trust Center.
The retention period of the uploaded documents depends on the configuration you have chosen for your Connective eSignatures environment and on how the individual users are using the solution. We advice our clients to make sure the documents uploaded for signing are deleted as soon as the document is signed (or after a specific period of time if they were not signed). This can be achieved by configuring an automatic auto-deletion or via manual functionalities within Connective eSignatures. Such configuration is aligned with the principle of data minimization and reduces the risk of processing.
Connective continiously improves the technical and organizational measures it has implemented to ensure a level of security appropriate to the risk when processing personal data. A detailled description of these measures is set out in our TOM Statement, available here and the certifications we have obtained are listed in the compliance section of our Trust Center.
In our experience data subjects will mostly contact the data controller directly when willing to exercise their rights (and Connective acts in general as data processor when offering its services). However, if we do receive a request from a data subject, we will identify such data subject as soon as possible and inform the relevant data controller without undue delay. Our solutions include different functionalities which enable data controllers to follow-up the request from the data subject. Additionally, our DPO Office is at your disposal in case of any additional questions.
As our client, you will be informed without undue delay in case of a data breach. Connective has implemented a data breach procedure, which ensures a prompt follow-up when these circumstances would occur.