Compliance certifications and regulations
GDPR compliance
Our eSignature software complies with the EU’s General Data Protection Regulation (GDPR). As a security and compliance-centric organization, GBS considers its data processing and protection of customer’s privacy duties of utmost importance. Customer’s documents are always encrypted at transit and rest with industry grade encryption. We stand prepared to fulfill customer’s rights granted by the GDPR regulation.
21 CFR Part 11
Organizational settings and functionality within GBS assist our customers in complying with their responsibilities pursuant to 21 CFR Part 11. These features include two-factor authentication, session duration and timeouts due to inactivity, eSignature timestamps, digital certifications, and document history retention.
PCI DSS certification
The Payment Card Industry Data Security Standards (PCI DSS) certification safeguards cardholder data. GBS complies with PCI DSS ensuring the security of customer’s credit card data in its billing practices.
SOC 2 Type II
certification
SOC 2 is an auditing procedure that ensures your service providers securely manage your data to protect the interests of your organization & the privacy of your clients.
CCPA compliance
Our eSignature software complies with the California Consumers Protection Act of 2018, ensuring the protection of personal data and personal privacy when collecting and using customer information.
HIPAA compliance
GBS empowers medical professionals around the country by enabling their compliance with the Health Insurance Portability and Accountability Act (HIPAA). Our eSignature solution protects the private health information of patients by enhancing the security, authenticity, and reliability of electronic records and signatures.
ESIGN and UETA compliance
Our eSignature software complies with the requirements of the Electronic Signatures in Global and National Commerce Act (ESIGN) and Uniform Electronic Transactions Act (UETA) empowering users across the industries and verticals to manage and sign their documents electronically.
GBS takes security seriously
Check out our tools and procedures built to help you protect your data and meet policy obligations.
Data encryption and storage
All data is encrypted with 256-bit encryption algorithm at rest and transfer.
Detailed Audit Trail
Our eSignature creates and maintains a detailed document history, which shows all document activities and who performed them, including full names, email and IP addresses, and time stamps.
Disaster recovery
GBS maintains and regularly tests its Disaster Recovery plan. Our Disaster Recovery Plan ensures continuous operations with minimal interruptions in the case of an emergency. This includes procedures to preserve documents and document security.
Two-factor signer authentication
GBS can add an extra layer of protection to a document by requiring applicants to enter a password or authenticate their identity via a text message or phone call globally.