How to activate a certificate?

Once downloaded, the certificate has to be recognized by the application used.

Can a certificate stored on a microprocessor card be transferred?

No. This type of certificate should remain stored on a microprocessor card, it cannot be transferred or saved on any other media.

Is the certificate protected by a secret code?

For a certificate stored on a microprocessor card, a PIN code will be requested automatically every time you use your certificate.

If any piece of information on the subscription form is not or no longer correct, the customer must inform the Certification Authority who will take all necessary steps to update the form or revoke the certificate(s) depending on the type of information.
Important: In order to obtain a new certificate, a new Individual Subscriber Request should be addressed to SG Trust Services.

Certificate on microprocessor card:
It is advisable to install the microprocessor card drive on the new computer by using the installation CD ROM again. Once the drive has been installed, the authentication authority root should be downloaded from our website (www.sgtrustservices.com/en/sgts/digitalidCenter.htm).

Once the browser has been changed, the Subscriber will have to get the certification string of his certificate verified by downloading the authentication authority root from the SG Trust Services website:www.sgtrustservices.com/en/sgts/digitalidCenter.htm.

Can a frequent change of computer cause any problems?

As regards the certificates on a microprocessor card, you must install the microprocessor card drive on the new computer using the installation CD ROM once again. Once the drive has been installed, the authentication authority root should be downloaded from our website (www.sgtrustservices.com/en/sgts/digitalidCenter.htm).

Our certificates are renewed every two years for security reasons. The renewal of the certificate is performed automatically. It is triggered automatically one month prior to the date of the end of the validity of the certificate* and is done with a change of key. The Subscriber is notified of the renewal of his certificate by e-mail, the Certificate Manager is notified by mail. The Subscriber should obtain his new certificate within 30 calendar days following the date of the notification e-mail. Beyond the 30 days, a new certificate must be issued at the Customer's expense. The Subscriber should use his still valid certificate to procure the new one. A new microprocessor card is sent to the Subscriber on which is installed the renewed certificate.

* The certificate expires exactly 2 years after the Subscriber obtained it.

Should the renewed certificate be tested?

Yes. The Subscriber is responsible for testing it within 7 working days after obtaining the Certificate. After this time, the Subscriber will be deemed to have accepted his Certificates. This procedure is described on our website in the section dealing with Management of Certificates.

Can the data in the certificate be modified?

Yes. A new Individual Subscriber Request, fully filled out (and duly signed) should be addressed to SG Trust Services. This request for changes should occur at least 37 calendar days prior to the date of the end of the validity of the certificate.

The following reasons may cause a Subscriber's certificate to be revoked:

• The cessation of the Customer's activity or that of the Subscriber's entity,
• The information given about the Subscriber in his certificate is not or is no longer correct and this occurs before the certificate expires,
• Non-compliance with the rules for using the certificate,
• The Subscriber's private key is suspected of having been violated, has been violated, lost or stolen,
• Cancellation of General Conditions,
• Cancellation of associated Special Conditions,
• Departure, transfer to another post or death of the Subscriber.
  

Who can revoke a certificate?

Revocation can be requested by:

• The Subscriber of the certificate in question,
• The Certificate Manager,
• One of the branch offices of the Group,
• SG Trust Services itself,
• Any other individual or corporate body authorized by SG Trust Services,
  

Revocation requests can be made online (on our website accessible 24 hours a day), on our web site www.sgtrustservices.com, by phone* (Customer Service on the phone number +33(0) 2 54 44 71 07), and by post, e-mail or fax addressed to our Customer Service. They can also be made at Société Générale branch offices during business hours.
*Outside business hours, the telephone request is taken by an answering machine (which records the request).

If your revocation request in not done online, you must give the following information when making this request:

• Patronimic name and middle name of the Suscriber,
• e-mail of the Suscriber,
• Suscriber's ID Code,
• SIREN number (the Subscriber's entity),
• Type of use: "nominal" or "back-up".
  

What should be done if the Subscriber suspects that his certificate has been used by a third party?

If there is any doubt, do not hesitate to revoke it.

Where can be found the Certificate Revocation List?

This list can be consulted on the Internet. The URL is mentioned in the field "CRL Distribution Points" of the certificate.