Last modification: 05-17-2020 (filed and time stamped on MyCopyProof.com)
C14 Classic archiving is an efficient solution based on industry standards.
Designed for long-term data archiving and backup, C14 can store and restore large amounts of data in just a few clicks.
Your data is encrypted using AES-256, replicated several times and stored within DC4, l Scaleway's anti-atomic Databunker located 25 meters underground, in the heart of Paris. With no known natural, technological or military risks, this is the ideal place to host your most sensitive data. The Intensive and Standard service levels are also available on our Datacenter DC2. Requests to unarchive archived data must be validated by e-signproof. The extraction time is approximately 4 hours.
Specially designed to provide durability above 99.99% and availability of 99.99%, the replication and parity mechanisms we use to secure our data are among the most advanced on the market. In addition, our Scaleway data centers have the latest security technologies and are ISO27001 certified as well as for hosting health data (HDS). All stored data is encrypted.
The E-SignProof © site and all its services are in HTTPS. Registration and connection to his account uses the double criteria protocol (login + password). The HTTPS protocol guarantees the security of users as well as the data that is exchanged. This security prevents attacks by which a third party comes between you and the site you are visiting to retrieve a copy of the information you send. This protection is therefore essential for e-commerce sites, but generally for any site offering registration.
Google is a strong supporter of HTTPS.
The security procedures applied by Online.by Scaleway are numerous and they are documented on the site www.online.net
Regarding data storage, e-signproof.com uses Scaleway Object Storage (data) and Scaleway C14 storage and archiving space for archiving. Scaleway is solely responsible for the storage of data, their integrity, their security, and the maintenance of the databases entrusted to them. E-signproof can in no way be held responsible for problems concerning third-party providers such as Microsoft, Scaleway or PayPal for example.
* A password is defined by the super account (manager's account).
* Each organization (entity) has its own password, managed by the managers of each entity (or the super account)
Internal workings of encryption:
Passwords are stored in a database, encrypted with a password managed by the application (and updated regularly).
Each uploaded file is encrypted with a key unique to each file.
The unique key used to encrypt the file is encrypted with the provided password (that of the entity or the global one).
This encrypted intermediate key is stored in the database and therefore refers to a single file.
How decryption works:
The user gives the password. This allows you to decrypt the intermediate key.
The decrypted intermediate key is used to decrypt the file.
How password change works:
Only the intermediate keys need to be re-encrypted (decryption with the old password and re-encryption with the new one)
Advantage:
1. No need to re-encrypt all files. Only intermediate keys are updated when changing the password.
2. A PLC, at regular intervals, modifies the internal encryption of the users' password.
Conclusion:
To be able to read a file at an instant t, without going through the system, the person must have in his possession:
* The entity's password at time t (not found in the system because it was encrypted),
* The file.
* The intermediate key encrypted at time t.
The principle of operation of rights:
The super account (the main account which has the subscriptions, the 1st account at the origin of the organization) has "responsible" rights on all the entities of its organization.
The head of an entity can:
- Modify the organization of its entity
- Invite collaborators, place them in one or more entities for which he is responsible.
- Appoint managers for the entities for which he is responsible.
- Change entity assignments for campaigns (only move a campaign from an entity for which he is responsible to another entity for which he is responsible).
- Modify an existing campaign that belongs to an entity for which he is responsible.
Members without liability:
- Can see signatures that belong to an entity of which they are a member.
- Can add signers to an existing campaign that belongs to an entity of which they are a member.
- Can add a new campaign
- Can make a new simple request.
CONTACT US
Email : contact@e-signproof.com
e-SignProof © belongs to the BPS Ltd. group.
Site sources are time stamped by MyCopyProof ©.
The 177 countries of the Berne Convention
Website e-signproof.com © 2020