Last Updated: 4 July 2025

Introduction

This document explains how Adure bv (“Adure”, “we”, “us”) collects, uses, and protects personal data. It is divided into two parts:

  • Part A: General Privacy Policy. This part applies when we act as a Data Controller, for example, when you visit our website (adsign.beadure.io, adure.be), contact us, or subscribe to our services. It covers our use of cookies and your rights regarding the data we hold about you.
  • Part B: Data Processing Addendum (DPA) for the @Sign Service. This part applies when you use our @Sign application (“Service”). In this context, you are the Data Controller, and Adure acts as a Data Processor on your behalf. This DPA is incorporated into our Terms of Service and is intended to satisfy the requirements of Article 28 of the GDPR.

Part A: General Privacy Policy

This section applies to the personal data for which Adure is the Data Controller.

1. What Personal Data We Collect and Why

We may collect the following data:

  • When you visit our website: We automatically collect technical information, such as your IP address, browser type, and operating system. We process this data based on our legitimate interest to secure our website and analyze its performance.
  • When you contact us (e.g., via email or a contact form): We collect the information you provide, such as your name, email address, and the content of your message. We process this data to respond to your inquiry, based on your consent or as a pre-contractual step.
  • When you subscribe to our Service: We collect account and billing information, such as your name, company name, and email address. This data is processed for the performance of a contract. Your payment details are handled directly by our payment processor, Stripe, and are not stored by us.

2. Cookie Policy

What are cookies? Cookies are small text files placed on your device when you visit a website. They help the website function correctly and provide information to the website owners.

How we use cookies: We use the following types of cookies on our website:

  • Strictly Necessary Cookies: These are essential for you to move around the website and use its features. They do not require your consent.
  • Functional Cookies: These cookies allow the website to remember choices you make (such as your language preference) to provide a more personalized experience.
  • Analytical Cookies: These cookies help us understand how visitors interact with our website by collecting information anonymously. This allows us to improve our website and services.
  • Marketing Cookies: These cookies are used to track visitors across websites. The intention is to display ads that are relevant and engaging for the individual user.

Your Consent: When you first visit our website, we will ask for your consent to place non-essential (Functional, Analytical, and Marketing) cookies on your device via a cookie banner. You can withdraw or change your consent at any time through our cookie settings panel or by adjusting your browser settings.

3. Data Sharing and Transfers

We do not sell your personal data. We may share it with trusted third-party service providers who assist us in operating our business, such as:

  • Stripe, Inc.: For processing payments for our services.
  • Analytics Providers: For analyzing website traffic.

Some of these providers may be located outside the European Economic Area (EEA). In such cases, we ensure that the transfer of your data is protected by appropriate safeguards, such as Standard Contractual Clauses (SCCs).

4. Your Data Subject Rights

Under the GDPR, you have the following rights regarding the personal data we hold about you as a Data Controller:

  • Right of Access: You can request a copy of the personal data we hold about you.
  • Right to Rectification: You can ask us to correct any inaccurate or incomplete data.
  • Right to Erasure (“Right to be Forgotten”): You can request that we delete your personal data.
  • Right to Restrict Processing: You can ask us to limit the processing of your personal data.
  • Right to Data Portability: You can request to receive your data in a structured, commonly used, and machine-readable format.
  • Right to Object: You can object to us processing your personal data (e.g., for direct marketing).

To exercise these rights, please contact us at info@adsign.be.

Part B: Data Processing Addendum (DPA) for the @Sign Service

This section applies when Adure acts as a Data Processor on behalf of the Customer.

1. Roles and Responsibilities

  • Controller: The Customer is the Data Controller.
  • Processor: Adure is the Data Processor.

2. Details of Data Processing on Behalf of the Customer

(a) Subject-Matter, Nature, and Purpose: The processing is for the performance of the @Sign Service, which acts as a technical conduit between the Customer’s Salesforce Platform and Zoho Sign account to manage e-signature workflows.

(b) Duration: The duration of the processing corresponds to the term of the Customer’s subscription.

(c) Type of Personal Data and Categories of Data Subjects: Determined solely by the Customer. May include contact details, professional information, and any other data contained within documents sent for signature, concerning employees, customers, or business partners.

3. Obligations of the Processor (Adure)

Adure commits to the following:

  1. Instructions: Process Personal Data only on the Controller’s documented instructions.
  2. Confidentiality: Ensure all authorized persons are bound by confidentiality.
  3. Security: Implement appropriate technical and organizational measures (e.g., encryption in transit) to protect the data.
  4. Sub-processing: The Customer provides general authorization to engage the following Sub-processors essential for the Service:
    • Salesforce.com, Inc.: For hosting the Service and the Customer’s data.
    • Zoho Corporation Pvt. Ltd.: For providing the e-signature functionality.
    • Stripe, Inc.: For processing payments related to the Service subscription. Adure will inform the Customer of any intended changes to this list, giving the Customer the opportunity to object.
  6. Data Subject Rights: Assist the Controller by appropriate technical measures to fulfill its obligation to respond to data subject requests. As Adure does not store data, this is limited to directing requests to the Controller.
  7. Assistance to the Controller: Assist the Controller in ensuring compliance with GDPR Articles 32 to 36 (Security, Breach Notifications, DPIAs).
  8. Data Deletion/Return: As Adure does not store data, there is no data to delete or return from Adure’s systems upon termination.
  9. Audits: Make available all information necessary to demonstrate compliance with Article 28 of the GDPR.

4. Contact

For any questions regarding this Privacy Policy or DPA, please contact: Adure bv Email: hello@adsign.be

Disclaimer: This is a template and not legal advice. It is strongly recommended that you have this document reviewed by a qualified legal professional to ensure it meets all legal requirements for your specific situation.

Privacy Policy