SOC 2 Type II Certified
SOC 2 Type II certification ensures that a service organization meets or exceeds industry standards for security, availability, processing, integrity, confidentiality and privacy of a system.
PCI DSS Compliance
PCI Data Security Standards ensure the safety of the cardholder’s data. An organization with PCI certification maintains payment security and ensures that their customers’ credit card information is well-protected against cyber threats and attacks.
For customers who constantly deal with medical records, SignNow supports the Health Insurance Portability and Accountability Act. Thus, you can be sure that there will be confidential storage and transmission of healthcare information.
SSAE 16 Professionals has confirmed SignNow complies with Section 4 – Electronic Signatures, Article 25. The electronic signatures produced by SignNow shall not be denied legal effect and admissibility as evidence in legal proceedings solely on the grounds that it is in an electronic form or that it does not meet the requirements for qualified electronic signatures. Furthermore, SSAE 16 Professionals has confirmed SignNow complies with Section 4 – Electronic Signatures, Article 26. The electronic signatures produced by SignNow are uniquely linked to the signatory or natural person who creates an electronic signature; capable of identifying the signatory; created using electronic signature creation data that the signatory can, with a high level of confidence, use under his sole control; and linked to the data signed therewith in such a way that any subsequent change in the data is detectable.
EU Data Protection
The EU Data Protection Directive (also known as Directive 95/46/EC) is a regulation that covers the processing of personal data and the free movement of such data. This Directive sets out a number of data protection requirements which apply when personal data is being processed.
SignNow uses Amazon Web Services. Amazon.com, Inc. is certified under the EU-US Privacy Shield and AWS is covered under this certification. This helps customers who choose to transfer personal data to the US to meet their data protection obligations. Amazon.com Inc’s certification can be found on the EU-US Privacy Shield website here: https://www.privacyshield.gov/list
Title 21 CFR Part 11 Compliance
SSAE 16 Professionals has confirmed SignNow complies with Title 21 CFR Part 11 Subpart A – General Provisions, Subpart B – Electronic Records, and Subpart C – Electronic Signatures. These subparts make up the entire Title 21 CFR Part 11.
Legally Binding Signatures. World-Class Security.
SignNow complies with ESIGN and provides additional security and authentication options above and beyond what is legally required by ESIGN.
Unique Signatures for Each User
Retention in the Cloud
Detailed Audit Log
General Rule of Validity
UETA and ESIGN both state: “a record or signature may not be denied legal effect or enforceability solely because it is in electronic form.” These statutes establish the general rule that electronic signatures are valid and enforceable, provided certain requirements are established.