Your clients trust you with sensitive financial and legal data. We take that responsibility seriously.
Each firm's data is completely isolated at the database level. One client can never access another firm's data, even in the event of a software vulnerability. This is the same architecture used by enterprise SaaS platforms.
All documents and data are encrypted at rest using AES-256 — the same standard used by banks and governments. Data in transit is protected by TLS 1.3.
TOTP-based 2FA with recovery codes for every user account. Protects against compromised passwords and phishing attacks.
Every action — logins, document views, signature events, invoice activity — is logged with timestamp, IP address, and user identity. Complete accountability.
Built with privacy by design. Data processing agreements (DPA) available. Right to erasure, data portability, and consent management all supported.
Enterprise infrastructure with automatic failover, daily backups, and disaster recovery. Your data is safe and always available.
Every signature captures signer identity, IP address, timestamp, device info, and document hash. Creates a tamper-evident, legally admissible audit trail.
All data is backed up daily with point-in-time recovery capability. Backups are encrypted and stored in geographically separate locations.
GDPR
EU/UK data protection
eIDAS
EU e-signature regulation
ESIGN Act
US e-signature law
TLS 1.3
Transport encryption
AES-256
Storage encryption
TOTP 2FA
Multi-factor auth
We're happy to answer any questions about our security practices, provide our DPA, or discuss specific compliance requirements.