Privacy Policy

At SignFlow, we take your privacy seriously. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our e-signature platform and services.

1. Information We Collect

We collect information you provide directly to us, including:

• Account Information: Name, email address, phone number, company name, and payment information when you create an account.
• Document Information: Documents you upload for signing, including metadata and content.
• Usage Information: How you interact with our services, including IP addresses, browser type, and device information.
• Communications: When you contact us for support or feedback.

2. How We Use Your Information

We use the information we collect to:

• Provide, maintain, and improve our services
• Process transactions and send related information
• Send technical notices, updates, and support messages
• Respond to your comments, questions, and requests
• Monitor and analyze trends, usage, and activities
• Detect, investigate, and prevent security incidents
• Comply with legal obligations

3. Information Sharing

We may share your information in the following circumstances:

• With Recipients: When you send a document for signing, recipients receive access to that document.
• Service Providers: Third-party vendors who perform services on our behalf.
• Legal Requirements: When required by law or to protect our rights.
• Business Transfers: In connection with a merger, acquisition, or sale of assets.

4. Data Security

We implement appropriate technical and organizational measures to protect your personal information, including 256-bit AES encryption for data at rest and TLS 1.3 for data in transit. We are SOC 2 Type II certified and undergo regular third-party security audits.

5. Data Retention

We retain your personal information for as long as your account is active or as needed to provide services. Signed documents are retained according to your account settings and applicable legal requirements. You can request deletion of your data at any time.

6. Your Rights (GDPR)

If you are in the European Economic Area, you have the right to:

• Access your personal data
• Rectify inaccurate personal data
• Request erasure of your personal data
• Object to processing of your personal data
• Request restriction of processing
• Data portability
• Withdraw consent at any time

7. International Transfers

Your information may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place, including Standard Contractual Clauses approved by the European Commission.

8. Children's Privacy

Our services are not directed to children under 16. We do not knowingly collect personal information from children under 16. If we learn we have collected such information, we will take steps to delete it.

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last updated" date.

10. Contact Us

If you have any questions about this Privacy Policy, please contact us at: