E-signature for IT and CIO teams
SaaS contracts, supplier NDAs, GDPR DPAs, SLAs, support contracts, audit authorisations: Certyneo offers multi-signer signature (IT buyer + DPO + CISO) + tamper-proof audit trail. NIS2, ISO 27001, GDPR and eIDAS compliant.
IT between procurement, legal and compliance
A SaaS contract typically involves 4 signers: IT buyer, DPO, CISO, legal. Without a centralised workflow, the contract gets lost in emails; production rollout waits weeks. Certyneo orchestrates parallel signature of all 4 signers in a single envelope.
All your IT contracts online
6 use cases covering SaaS subscriptions, tech supplier management and compliance.
SaaS contract / SLA
B2B SaaS subscription with technical annex (RPO/RTO, 99.95% availability, downtime penalties). Native multi-signer.
GDPR DPA (art. 28)
Data Processing Agreement (DPA) compliant with GDPR article 28: SCC annex, non-EU transfers (Standard Contractual Clauses), subcontractor list.
IT supplier NDA
Tech confidentiality agreement, pre-PoC, log / data sharing agreement. Multi-language for offshore suppliers.
Support & maintenance contract
Application maintenance contract (AMS), L1/L2/L3 support contract, reversibility agreement, third-party application maintenance contract.
Audit & pentest authorisation
Pentest mandate, security audit mandate, bug bounty agreement, vulnerability scan authorisation (rule of engagement).
Cloud & hosting contract
IaaS/PaaS/SaaS contract, colocation contract, HDS hosting contract (healthcare), sovereign cloud SecNumCloud agreement.
Why Certyneo for CIOs
Native multi-signer workflow
IT buyer + DPO + CISO + legal sign in parallel, not sequentially. Reduces processing time from 3 weeks to 48 hours.
Tamper-proof audit trail
Every action on the contract (creation, send, view, signature, refusal) is RFC 3161 timestamped, IP + user-agent captured, cryptographic seal. Exportable for ISO 27001 / NIS2 audit.
Azure AD / Okta SSO included
Authentication via your enterprise directory (Azure AD, Okta, Google Workspace, Auth0, custom SAML 2.0). SCIM 2.0 provisioning available.
Frequently asked questions — IT/CIO
- Is Certyneo NIS2 compliant?
- Yes. The NIS2 directive (EU 2022/2555) requires for essential / important entities: (a) signature audit trail, (b) reinforced authentication (MFA), (c) access traceability. Certyneo covers these 3 obligations by default.
- Can the Certyneo DPA be signed directly from your platform?
- Yes. The Certyneo standard DPA (GDPR article 28) is pre-filled and available in your account with one click. You can amend it self-service (SCC addition, non-EU transfer restriction). Signature in under 5 minutes.
- What strong authentication (MFA) does Certyneo offer?
- TOTP (Google Authenticator, Authy), SMS-OTP, email-OTP, FIDO2 / WebAuthn (Yubikey keys, Touch ID), biometry (Face ID / Touch ID iOS), video KYC (for QES). Configurable per role or per document.
- Can I audit all my users' actions?
- Yes. Our consolidated audit log exports in CSV/JSON all actions (creation, send, signature, modification, deletion) with timestamp, IP, user-agent and user identifier. 10-year retention (configurable to 30 years for pharma compliance).
- Does Certyneo offer a contractual SLA?
- Yes. Our standard SLA guarantees 99.95% availability (max 4h annual downtime). Our Enterprise SLA guarantees 99.99% (52 min/year) with contractual penalties in case of non-compliance. Multi-AZ architecture at OVHcloud SecNumCloud.