Privacy Policy

1.1. SwiftSign, Inc. ("SwiftSign," "we," "us," or "our") is committed to protecting your privacy and personal information.

1.2. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our electronic signature platform and related services ("Service").

1.3. By using our Service, you consent to the data practices described in this Privacy Policy.

1.4. This Privacy Policy applies to all users of our Service, including visitors, registered users, and customers.

2.1. Personal Information You Provide:

• 2.1.1. Account registration information (name, email address, phone number, company name)
• 2.1.2. Profile information and preferences
• 2.1.3. Payment and billing information (processed securely by third-party payment processors)
• 2.1.4. Documents and content you upload, create, or share through our Service
• 2.1.5. Communications with us (support requests, feedback, inquiries)
• 2.1.6. Electronic signature data and authentication information

2.2. Information Collected Automatically:

• 2.2.1. Device information (IP address, browser type, operating system, device identifiers)
• 2.2.2. Usage data (pages visited, features used, time spent, click patterns)
• 2.2.3. Log files and server data
• 2.2.4. Cookies and similar tracking technologies
• 2.2.5. Location data (general geographic location based on IP address)

2.3. Information from Third Parties:

• 2.3.1. Information from integrated third-party services (with your consent)
• 2.3.2. Identity verification data from trusted verification services
• 2.3.3. Business information from public databases and business directories

3.1. Service Provision and Operation:

• 3.1.1. Provide, operate, and maintain our electronic signature services
• 3.1.2. Process and facilitate electronic signatures and document workflows
• 3.1.3. Authenticate users and verify identities for security purposes
• 3.1.4. Store and organize your documents securely
• 3.1.5. Enable collaboration and sharing features

3.2. Account Management and Support:

• 3.2.1. Create and manage user accounts
• 3.2.2. Process payments and manage subscriptions
• 3.2.3. Provide customer support and respond to inquiries
• 3.2.4. Send important service notifications and updates

3.3. Service Improvement and Analytics:

• 3.3.1. Analyze usage patterns to improve our Service
• 3.3.2. Develop new features and functionality
• 3.3.3. Conduct research and analytics
• 3.3.4. Monitor and ensure service performance and security

3.4. Legal and Compliance:

• 3.4.1. Comply with legal obligations and regulatory requirements
• 3.4.2. Maintain audit trails for electronic signatures
• 3.4.3. Prevent fraud and ensure platform security
• 3.4.4. Enforce our Terms of Service

3.5. Marketing and Communications (with consent):

• 3.5.1. Send promotional emails and product updates (opt-in only)
• 3.5.2. Personalize marketing content and recommendations
• 3.5.3. Conduct surveys and gather feedback

4.1. We do not sell, rent, or trade your personal information to third parties.

4.2. Service Providers and Partners:

• 4.2.1. Cloud hosting and infrastructure providers (AWS, Google Cloud)
• 4.2.2. Payment processors (Stripe, PayPal) for billing and subscription management
• 4.2.3. Email service providers for transactional and marketing communications
• 4.2.4. Analytics and monitoring services
• 4.2.5. Customer support and help desk platforms

4.3. Document Recipients:

• 4.3.1. When you send documents for signature, we share necessary information with recipients
• 4.3.2. Recipients receive documents and related metadata as part of the signing process
• 4.3.3. Completed documents are accessible to all authorized parties

4.4. Legal Requirements:

• 4.4.1. When required by law, regulation, or court order
• 4.4.2. To protect our rights, property, or safety
• 4.4.3. To prevent fraud or illegal activities
• 4.4.4. In connection with legal proceedings

4.5. Business Transfers:

• 4.5.1. In the event of a merger, acquisition, or sale of assets
• 4.5.2. Users will be notified of any change in ownership or control

5.1. Security Measures:

• 5.1.1. Industry-standard encryption for data in transit and at rest (AES-256)
• 5.1.2. Secure data centers with physical and environmental controls
• 5.1.3. Multi-factor authentication and access controls
• 5.1.4. Regular security audits and penetration testing
• 5.1.5. Employee security training and background checks
• 5.1.6. Incident response and breach notification procedures

5.2. Compliance Standards:

• 5.2.1. SOC 2 Type II compliance
• 5.2.2. GDPR compliance for European users
• 5.2.3. CCPA compliance for California residents
• 5.2.4. ESIGN Act and UETA compliance for electronic signatures

5.3. Data Retention:

• 5.3.1. Personal information is retained only as long as necessary for business purposes
• 5.3.2. Signed documents are retained according to legal requirements and user preferences
• 5.3.3. Account data is deleted within 30 days of account closure (unless legally required to retain)

6.1. Access and Control:

• 6.1.1. Access and review your personal information through your account settings
• 6.1.2. Update or correct your personal information
• 6.1.3. Download your data in a portable format
• 6.1.4. Delete your account and associated data

6.2. Communication Preferences:

• 6.2.1. Opt out of marketing communications at any time
• 6.2.2. Manage email notification preferences
• 6.2.3. Control cookie and tracking preferences

6.3. Regional Privacy Rights:

• 6.3.1. GDPR Rights (EU residents): Right to access, rectification, erasure, portability, restriction, and objection
• 6.3.2. CCPA Rights (California residents): Right to know, delete, opt-out of sale, and non-discrimination
• 6.3.3. Other Regional Rights: As applicable under local privacy laws

6.4. Exercising Your Rights:

• 6.4.1. Contact us at privacy@swiftsign.net to exercise your privacy rights
• 6.4.2. We will respond to requests within 30 days (or as required by applicable law)
• 6.4.3. Identity verification may be required for certain requests

7.1. Types of Cookies We Use:

• 7.1.1. Essential Cookies: Required for basic service functionality
• 7.1.2. Performance Cookies: Help us analyze service usage and performance
• 7.1.3. Functional Cookies: Remember your preferences and settings
• 7.1.4. Marketing Cookies: Used for targeted advertising (with consent)

7.2. Third-Party Tracking:

• 7.2.1. Google Analytics for website analytics
• 7.2.2. Marketing platforms for campaign tracking
• 7.2.3. Customer support tools for chat functionality

7.3. Managing Cookies:

• 7.3.1. You can control cookies through your browser settings
• 7.3.2. Disabling essential cookies may affect service functionality
• 7.3.3. Use our cookie preference center to manage non-essential cookies

8.1. SwiftSign operates globally and may transfer your information to countries outside your residence.

8.2. Safeguards for International Transfers:

• 8.2.1. Standard Contractual Clauses (SCCs) for EU data transfers
• 8.2.2. Adequacy decisions where available
• 8.2.3. Other appropriate safeguards as required by applicable law

8.3. Data is primarily processed in the United States with appropriate security measures in place.

9.1. Our Service is not intended for children under 18 years of age.

9.2. We do not knowingly collect personal information from children under 18.

9.3. If we become aware that we have collected information from a child under 18, we will delete it promptly.

9.4. Parents or guardians who believe their child has provided information to us should contact us immediately.

10.1. We may update this Privacy Policy from time to time to reflect changes in our practices or applicable laws.

10.2. Notification of Changes:

• 10.2.1. Material changes will be communicated via email or prominent notice in our Service
• 10.2.2. The updated Privacy Policy will be posted on our website
• 10.2.3. Changes become effective 30 days after posting (unless otherwise specified)

10.3. Your continued use of the Service after changes become effective constitutes acceptance of the updated Privacy Policy.

11.1. If you have any questions about this Privacy Policy or our privacy practices, please contact us:

11.3. For data protection officer (EU): dpo@swiftsign.net