Data Privacy.
GDPR Compliant • End-to-End Encrypted
Our Core Promise
We do not sell your data. We do not train AI models on your private documents. We do not read your contracts. Your data is yours, encrypted and secure.
Information Collection
We collect only what is necessary: account credentials, payment information, and document metadata required for audit trails (IP address, timestamps, browser agent).
Document Security
Documents are encrypted at rest using AES-256 and in transit using TLS 1.3. Access is strictly limited to authorized parties via the signing protocol.
Your Rights (GDPR)
You have the right to access, correct, or delete your personal data. You can export your data at any time from the privacy dashboard.
Data Retention
We retain audit logs indefinitely as required for legal validity of signatures. Document content retention is configurable by the user.
Third-Party Processors
We use Stripe for payments and AWS/Vercel for infrastructure. All sub-processors are vetted for strict security compliance.