ESIGN Compliance

The validity and enforceability of electronic signatures has been well established in the United States for over fifteen years.

SOC 2 Type II Certified

SOC 2 Type II certification ensures that a service organization meets or exceeds industry standards for security, availability, processing, integrity, confidentiality and privacy of a system.

SOC2 Type II

GDPR Compliance

GDPR has been approved by the European Union with the aim of increasing the protection of an EU customer’s personal data as well as their right to it. Each organization that handles the data of an EU resident must comply with strict requirements concerning data collection and its management or pay revenue-based fines for not doing so.

GDPR

PCI DSS Compliance

PCI Data Security Standards ensure the safety of the cardholder’s data. An organization with PCI certification maintains payment security and ensures that their customers’ credit card information is well-protected against cyber threats and attacks.

HIPAA Compliance

For customers who constantly deal with medical records, SignNow supports the Health Insurance Portability and Accountability Act. Thus, you can be sure that there will be confidential storage and transmission of healthcare information.

eIDAS Compliance

SSAE 16 Professionals has confirmed SignNow complies with Section 4 – Electronic Signatures, Article 25. The electronic signatures produced by SignNow shall not be denied legal effect and admissibility as evidence in legal proceedings solely on the grounds that it is in an electronic form or that it does not meet the requirements for qualified electronic signatures. Furthermore, SSAE 16 Professionals has confirmed SignNow complies with Section 4 – Electronic Signatures, Article 26. The electronic signatures produced by SignNow are uniquely linked to the signatory or natural person who creates an electronic signature; capable of identifying the signatory; created using electronic signature creation data that the signatory can, with a high level of confidence, use under his sole control; and linked to the data signed therewith in such a way that any subsequent change in the data is detectable.

21 CFR Part 11 Compliance

For all companies and organizations working in pharmaceuticals, medicine and with biotechnologies, SignNow guarantees full compliance with 21 CFR Part 11. This regulation applies to all records in electronic form and in part related to e-signatures. With regards to SignNow, it covers: identity verification of both the sender and signer, e-signature session length and a time-stamped audit trail.

Legally Binding Signatures. World-Class Security.

SignNow complies with ESIGN and provides additional security and authentication options above and beyond what is legally required by ESIGN.

Unique Signatures for Each User

When a document is sent to a user for signature, SignNow invites the user to create a unique signature that is attributable to that user and saved for future use. Once selected, the user clicks a button indicating their intent to make the designated e-signature a legally valid electronic signature.

Signer Authentication

Information tracked and available to identify signers includes email address they had access to when signing the document, IP address, and exact time of document access. SignNow also offers the option to add two-factor authentication to any document sent for signature.

Retention in the Cloud

Documents are housed in secure cloud storage facilities. Any registered user who signed or took action in connection with a SignNow document will be able to view or download a copy of the final e-signed PDF document upon creating a SignNow account.

Detailed Audit Log

SignNow also creates and maintains anaudit log, which shows the entire history of a document, including uploading, adding elements, viewing, signing, and who took each of these actions. The audit log is viewable directly with the SignNow app or can be appended to the PDF document through the Download with History feature.

Security

The security of customer data is the highest priority for SignNow. Additional security standards, such as HIPAA for medical documentation, have been made available to provide customers across industries with leading security features. Complying with industry leading security standards allows SignNow to provide one of the most secure e-signing experiences available.
icon lock

Still have questions about compliance or security?

Please call (800) 831-2050.

General Rule of Validity

UETA and ESIGN both state: “a record or signature may not be denied legal effect or enforceability solely because it is in electronic form.” These statutes establish the general rule that electronic signatures are valid and enforceable, provided certain requirements are established.

Consent

All parties to an agreement or transaction must agree to conduct the transaction using electronic means. Consent to conduct transactions using electronic means will be determined by the parties’ conduct and may be either express or implied. The action of electronically signing a document will generally satisfy this requirement.

Intent

In order to be valid, it must be clear that the signer intended the designated e-signature act or process to constitute an electronic signature. Intent to sign may be established when a person affirmatively attaches a digital signature to the document using a touch screen or click of a mouse and clicking a “submit” or “done” link.

Association

An e-signature must be connected to the document that is being signed. When using a digital signature, the signature is electronically attached to the electronic document at the time it is signed and saved as a PDF document.

Attribution

An e-signature must be connected to the document that is being signed. When using a digital signature, the signature is electronically attached to the electronic document at the time it is signed and saved as a PDF document.

Record Retention

An electronically signed document must be in a form that is capable of being retained and accurately reproduced for later reference by all parties or persons who are entitled to a copy of the document or record.
icon lock

Still have questions about compliance or security?

Please call (800) 831-2050.