Compliance

These are:

1. Uniform Electronic Transactions Act (UETA)
2. U.S. Electronic Signature in Global and National Commerce Act of 2000 (ESIGN)
3. European Union “electronic IDentification, Authentication and trust Services” (EU No.910/2014) regulation (eIDAS)
4. Regulation which incorporates EU eIDAS along with amendments passed into UK law following EU exit (Amendment etc.) (EU Exit) Regulations 2019 and The Regulation 2016 (2016 No.696)) (which collectively form UK eIDAS)
5. U.K. Electronic Communications Act 2000 / Electronic Signatures Regulations 2002 (implementing the E-Signature Directive (1999/93/EC))

These global regulations regulate electronic signatures and establish guidelines by which they achieve the same legal standing as traditional paper documents and handwritten signatures (Further to these specific regulations we also conform to data protection legislation including GDPR. For more information on privacy and data please read our privacy policy.)

Contained within these acts are several key requirements which include:

1. The intent to sign must be clear and there is no possibility of forgery.
2. Information on how the signature was captured should be stored.
3. Signatures should be retained for later reference and be accessible.
4. No tampering of records can occur and measures are in place to test that documents are original and intact.

Beyond that, the process for the end-user should be clear and the language used should be readily understandable.

OKCrowd conforms to these requirements in the following ways:

Signature authentication

It is important to know who is signing your production agreement and that they are fully aware of what they’re signing. Each person that signs your documentation must have received a request to sign via their email account. The Artiste is presented with the production agreement text in full, before being taken through a multi-step process to obtain a signature. Any personal information, including their signature, is transferred to the server using the strongest encryption possible.

Signature attachment

When OKCrowd produces a request for a person to sign, the latest production agreement is tied to that request and cannot be changed. This means that should the text of the agreement change any time after that point, the Artiste will only ever be shown the original agreement text that they signed. Whenever a document is produced by OKCrowd, the production agreement is displayed in full along with the signature(s) of the person(s) that signed that agreement.

Contract authenticity

OKCrowd has been designed from the ground up to prevent tampering and to keep your contracts and the history of your contracts secure.

OKCrowd uses hashing technology, at every step, to create a fingerprint that represents the action being taken and the information, such as IP address and the browser used, linked to that action. Every action that takes place is recorded in its own unique record along with its fingerprint. Whenever a document is produced by OKCrowd, a unique document fingerprint is taken and stored in the system; this can then be used to verify that a particular document was produced by OKCrowd and has not been tampered with.

For more information about how we store and keep data secure please read our security information.

Audit trail

OKCrowd produces a thorough audit trail of all of the events that take place around a production agreement, from when it was provided to when it is viewed or signed. When a document is created, for example, the audit trail is appended to the document and the document fingerprint is stored in our database along with the audit trail. Again, to prevent tampering, the entire audit trail is processed using hashing technology.

Reports

Admin users have access to reports concerning the signatures collected and also are able to find, view and download signed documents as required.