Rest assured your data is safe and secure with signNow

Sign and send documents for signing with industry-leading security and compliance standards defined in the US, Europe, and around the world.

Request our SOC 2 Type II report

Compliance certifications and regulations

GDPR compliance

signNow complies with the EU’s General Data Protection Regulation (GDPR). As a security and compliance-centric organization, signNow considers its data processing and protection of customer’s privacy duties of utmost importance. Customer’s documents are always encrypted at transit and rest with industry grade encryption. We stand prepared to fulfill customer’s rights granted by the GDPR regulation.

21 CFR Part 11

Organizational settings and functionality within signNow assist our customers in complying with their responsibilities pursuant to 21 CFR Part 11. These features include two-factor authentication, session duration and timeouts due to inactivity, eSignature timestamps, digital certifications, and document history retention.

PCI DSS certification

The Payment Card Industry Data Security Standards (PCI DSS) certification safeguards cardholder data. signNow complies with PCI DSS ensuring the security of customer’s credit card data in its billing practices.

SOC 2 Type II certification

SOC 2 is an auditing procedure that ensures your service providers securely manage your data to protect the interests of your organization & the privacy of your clients.

CCPA compliance

signNow complies with the California Consumers Protection Act of 2018, ensuring the protection of personal data and personal privacy when collecting and using customer information.

HIPAA compliance

signNow empowers medical professionals around the country by enabling their compliance with the Health Insurance Portability and Accountability Act (HIPAA). signNow’s eSignature solution protects the private health information of patients by enhancing the security, authenticity, and reliability of electronic records and signatures.

ESIGN and UETA compliance

signNow complies with the requirements of the Electronic Signatures in Global and National Commerce Act (ESIGN) and Uniform Electronic Transactions Act (UETA) empowering users across the industries and verticals to manage and sign their documents electronically.

signNow takes security seriously

Check out our tools and procedures built to help you protect your data and meet policy obligations.

  • Data encryption and storage

    All data is encrypted with 256-bit encryption algorithm at rest and transfer.
  • Detailed Audit Trail

    signNow creates and maintains a detailed document history, which shows all document activities and who performed them, including full names, email and IP addresses, and time stamps.
  • Disaster recovery

    signNow maintains and regularly tests its Disaster Recovery plan. Our Disaster Recovery Plan ensures continuous operations with minimal interruptions in the case of an emergency. This includes procedures to preserve documents and document security.
  • Two-factor signer authentication

    The document creator can add an extra layer of protection to a document by requiring a signer to enter a password or authenticate their identity via a text message or phone call.

FAQ