Every signature is backed by security and compliance controls, so your documents stay protected and can withstand legal scrutiny.
The Uniform Electronic Transactions Act (UETA) and the Electronic Signature in Global and National Commerce Act (ESIGN Act) are pivotal U.S. laws that establish the legal validity of electronic signatures and records. Both statutes ensure that electronic documents and signatures are as legally binding as their traditional counterparts.
Authentication
Signers are authenticated via email or SMS, ensuring the validity and trustworthiness of electronic signatures.
Record Retention
All digital records are securely stored enabling easy access and retrieval when necessary.
Audit Trail
An audit trail is maintained, featuring comprehensive logs through the entire signing process.
The Electronic Identification, Authentication and Trust Services (eIDAS) regulation is an EU initiative that standardizes electronic identification and trust services for electronic transactions. It ensures that electronic interactions between businesses, citizens, and public authorities are secure, seamless, and have legal standing.
eIDAS defines three levels of electronic signature, each with a different degree of security and legal weight:
Signer Intent
The signing intent is linked to the signer identity and ensures that the signer willingly participates in the transaction.
Data Integrity
The signature is linked to the signed data in such a way that any subsequent changes to the data can be detected.
Safe Transactions
Online transactions are secure and legally recognized under the eIDAS signature standards.
DocuSeal implements all three eIDAS levels. Simple electronic signatures are included by default, while Advanced (AES) and Qualified (QES) signatures are available at an additional cost per signature through the Qualified Trust Service Providers we partner with. Learn more
The General Data Protection Regulation (GDPR) is a regulation introduced by the European Union to protect the privacy and personal data of its citizens. It sets forth guidelines for the collection, processing, and storage of personal data and emphasizes transparency, security, and accountability by businesses.
Servers in the EU
All user data on docuseal.eu is stored exclusively on servers located within the European Union.
No Data Sharing
We never share or transfer user data to third parties for marketing or analytics purposes.
Do Not Track
Privacy is prioritized at all times. Only the data required by the digital signature process is collected.
21 CFR Part 11 is a set of regulations established by the U.S. Food and Drug Administration (FDA) that define when electronic records and electronic signatures are considered trustworthy, reliable, and equivalent to paper records and handwritten signatures. These regulations ensure that electronic documents are secure, authenticated, and stored with integrity.
Identity Verification
Signatures are linked to verified user identities through strong authentication.
Audit Logging
Comprehensive, time-stamped logs capture every action taken on a document.
Secure Records
Records are stored and managed securely to maintain integrity over time.
DocuSeal implement SOC 2 security standard to protect your data from unauthorized access. We ensure data availability through a robust infrastructure and continuous monitoring. We've also undergone an independent audit, documented in our SOC 2 Type II report.
Security
Access controls and monitoring guard against unauthorized access.
Availability
Robust infrastructure keeps your documents reachable.
Confidentiality
Strict controls maintain confidentiality of your data.
DocuSeal is ISO 27001 certified, meeting strict international standards for information security management. Our Information Security Management System (ISMS) is built on systematic risk assessment, documented controls, and continual improvement to keep your data protected at every level.
Risk Management
Systematic risk assessments identify, evaluate, and mitigate information security threats.
ISMS Controls
A documented Information Security Management System governs how data is handled and protected.
Regular Audits
Regular internal audits and management reviews keep security controls effective over time.
DocuSeal complies with HIPAA, the U.S. federal law that governs the privacy and security of Protected Health Information (PHI). We use advanced encryption and strict access controls to safeguard patient data. Regular staff training and updated policies ensure ongoing privacy and security. Contact us to enter a Business Associate Agreement (BAA).
Encryption
Advanced encryption safeguards Protected Health Information.
Access controls
Strict controls limit who can reach patient data.
Training
Regular staff training and updated policies maintain privacy.
Meeting these regulations and certifications reflects our commitment to the utmost security and compliance in every electronic transaction.