Nexus sees the EU's general data protection regulation (GDPR) as an important step forward in streamlining and unifying data protection requirements across the EU. We also see it as a great opportunity for us to strengthen our clear commitment to data protection principles and practices. It is as well fully in line with our recent ISO 27001 certification in Sweden.
Therefore, we have gathered some frequently asked questions regarding Nexus GO services and GDPR. See also Terms and GDPR Statements.
How does Nexus GO services protect data against interruptions and disruptions?
Nexus uses industry standard systems to protect against data loss, for example, at power outages or other types of interference.
Services that the data center operates, such as order portals, PDF signing and web shop, include replication that restores data if a specific server or cluster in the data center fails. Nexus GO services also include file backup.
How does data backup work in Nexus GO services?
Backup is taken regularly and is kept in a safe and in bank vaults. Restoration of the environment is well documented and restore is done continuously.
How is data communication protected and how is it guaranteed that access is authorized in Nexus GO services?
All communication is encrypted and with login.
Does Nexus log any usage of Nexus GO services?
Nexus logs access and use of systems containing data, and records access ID, time and relevant information.
How is virus attacks prevented in Nexus GO services?
Nexus has anti-malware detection to prevent malicious software from getting unauthorized access to data, including public network software.
How are premises for servers and computers that store information and personal data for Nexus GO services protected?
Nexus (including subcontractors) protects and limits premises, where information systems that process data are available, with lock and authentication with the purpose of identifying authorized individuals. Backup is taken regularly and is kept in safe and bank vaults.
How are users trying to access Nexus GO services identified?
Nexus uses industry standard practice to identify and authenticate users seeking access to the information system.
Does Nexus get permission from the customer to manage and save personal information for Nexus GO services?
Nexus does not process any kind of customer data without permission from our customers. Our customers decide which data to handle and Nexus uses this data solely to produce the products for identification, authentication and access control that our customers need.
Do you have rules for your staff who handle personal information in Nexus GO services?
Nexus’ personnel are required to treat all information confidentially and that obligation remains after their engagement has ceased.
What security measures do you take to protect personal data that is handled in Nexus GO services?
Nexus has implemented a range of technical and organizational measures, such as establishing internal controls and information security practices to protect the data we handle on behalf of the customer. The purpose is to protect our customers' information in our web services from accidental or temporary loss, damage or change, unauthorized disclosure or access, or unauthorized destruction.
Does Nexus GO services have an agreement for managing GDPR (data processing agreement)?
Yes we have, you can find them here:
Where can I find more information about GDPR?
Questions and answers in Swedish
The questions and answers for GDPR and Nexus GO services are also available in Swedish.
