Customer key control
Integration with customer-managed key stores or HSMs for encryption at rest and separation of duties, enabling organizations to retain control over cryptographic keys used to protect signed documents.
Private cloud deployments reduce shared-tenant exposure, increase control over encryption keys and access, and simplify compliance with strict regulatory or contractual security requirements for sensitive documents.
Responsible for selecting deployment topology, configuring network isolation, and validating encryption and key management. Works with procurement and legal to ensure service agreements and Business Associate Agreements (BAAs) meet organizational compliance requirements and oversees technical audits.
Manages templates and signing workflows inside the private cloud environment, ensures document retention schedules and approval routing comply with policy, and coordinates with IT to resolve signer authentication or access issues while maintaining chain-of-custody records.
Highly regulated organizations and enterprises with strict data governance typically choose private cloud deployments to maintain control over sensitive documents and signing workflows.
These deployments balance security, compliance, and operational control while preserving modern eSignature features such as audit trails and API integration.
Integration with customer-managed key stores or HSMs for encryption at rest and separation of duties, enabling organizations to retain control over cryptographic keys used to protect signed documents.
Native SAML-based single sign-on and multi-factor authentication options that align signer access with corporate identity providers and reduce credential sprawl and access risk for signing operations.
Comprehensive, tamper-evident audit logs that record signer events, IP addresses, timestamps, and document state transitions to support legal admissibility and regulatory inspection needs.
Deployment options that leverage VPCs, private connectivity, and strict firewall policies to restrict access to the signing environment to approved networks and systems only.
Full-featured REST APIs, webhooks, and SDKs to automate document flows, integrate with CRMs and DMS platforms, and preserve private cloud routing for embedded signing scenarios.
Configurable retention policies, export capabilities, and eDiscovery support ensuring signed documents are retained and retrievable according to legal and policy obligations.
| Setting Name | Configuration |
|---|---|
| Signature sequencing and recipient order | Sequential signing enforced |
| Document retention and archival policy | 90 days retention default |
| Automated reminder cadence and timing | 48 hours, three reminders |
| Conditional fields and routing rules | Enable conditional routing |
| Audit log storage and export settings | Exportable daily archives |
Private cloud eSignature solutions typically provide responsive web interfaces and native apps, enabling signers on desktop, tablet, or mobile to complete workflows while traffic routes through the private environment.
Ensure your deployment includes secure gateway configurations, mobile MDM policies where applicable, and compatibility testing with corporate network constraints to deliver a consistent signer experience across devices.
A regional health network required patient consent and billing signatures stored within its own cloud to comply with HIPAA
Resulting in strengthened HIPAA posture and easier audit responses.
An investment firm moved client onboarding and account agreements into a private cloud to meet strict data residency rules
Leading to faster regulatory reviews and consistent retention policy enforcement.
| Feature, security, and compliance criteria | signNow (Recommended) | DocuSign | Adobe Sign |
|---|---|---|---|
| Data residency and private cloud options | Available on request | Limited options | |
| Encryption standards and key management | AES-256 | AES-256 | AES-256 |
| HIPAA support and business associate agreement | BAA available | BAA available | BAA available |
| Bulk Send and API automation capabilities |
| Plan details and providers | signNow (Recommended) | DocuSign | Adobe Sign | HelloSign | PandaDoc |
|---|---|---|---|---|---|
| Starting price (monthly, per user) | Starts around $8 per user per month | Entry tiers from about $10 monthly per user | Plans begin near $12 monthly per user | Dropbox Sign starts near $15 per user monthly | Plans often start around $19 per user monthly |
| Free trial and free tier availability | Free trial available, no permanent free tier | Free trial available, no free tier | Free trial available; no free tier | Free trial; limited free tier available | Free trial; free eSign starter plan available |
| Private cloud or on-premises option | Available on request for enterprise customers | Typically no on-prem option | Cloud-only service | Cloud-only service | Cloud-first platform |
| API access and developer resources | Comprehensive REST API and SDKs for developers | Full API platform and extensive SDKs | REST APIs with Adobe integrations | REST API and SDKs available | Robust API and template APIs |
| HIPAA and enterprise compliance readiness | BAA available and enterprise compliance support | BAA available for covered accounts | BAA available for enterprise customers | BAA available on request | BAA available for select plans |
The airSlate SignNow On-Premises and Private Cloud Solutions enable companies to leverage the power and usability of the airSlate SignNow eSignature platform while satisfying robust security requirements.
With that in mind, airSlate SignNow offers two different deployment options: Appliance and Virtual Appliance. The Appliance is for users who need to run their private airSlate SignNow cloud on-premises. The Virtual Appliance is for customers who prefer to deploy airSlate SignNow on a VMware or Hyper-V virtual machine.
The airSlate SignNow Appliance and Virtual Appliance run within your network and require no internet connection. You can also selectively expose the application to the outside environment in a variety of ways: opening up ports or separating the application layer and storing it in the DMZ. For other options, please contact our support team.
With the airSlate SignNow Appliance and Virtual Appliance, you can run a private or publicly available version of the application while retaining all of your data at a data center within a specific country. For example, you can run your own unique instance of airSlate SignNow from a data center in Germany. And though it can be accessed from anywhere, you know precisely where your data is stored.
By using the airSlate SignNow Appliance or Virtual Appliance, you have fine-grained control over SMTP traffic. You can enforce policies and control data using your own standards. For example, you can set SMTP retention policies or affix disclaimers to email traffic automatically without any action required on the part of your users. Hardware solutions are also available.
The airSlate SignNow Appliance works with systems that support HIPAA, FINRA, and other compliance regulations.
The airSlate SignNow Appliance enables admins to download a full audit history as part of its backup solution.
airSlate SignNow utilizes VMware ESX and ESXi, VMware Server/Workstation/Player/Fusion, Microsoft Hyper-V, CITRIX XenServer, as well as various hardware solutions.
Leverage existing user directories via Active Directory or LDAP with the ability to manage access by group and domain.
The airSlate SignNow Appliance integrates with your existing email systems for easy compliance and control.
Easily obtain documents with their detailed history logs from the airSlate SignNow Appliance.
Just like the public cloud solution by airSlate SignNow, the airSlate SignNow Appliance seamlessly integrates with other applications via the RESTful API.
The airSlate SignNow Appliance can run in an entirely private environment, in a hosted private cloud, in a corporate network, or in many other configurations.
On the airSlate SignNow virtual machine, data is encrypted at rest, which ensures the safety of the information you store.
The web app is accessible using the following browsers: Safari, Chrome, Firefox, and Internet Explorer. Mobile applications are available for iPhone, iPad, and Android devices (version 4.3 and above).