Security & Privacy

By combining advanced threat intelligence, security testing, and rapid-response programs, we continuously strengthen Docusign’s defenses to keep customers and their agreements safe in an ever-evolving digital landscape.

New fraud verification capabilities let you validate whether a Docusign email is legitimate or an impersonation.

The most secure OAuth method for single-page applications is Authorization Code Grant with PKCE (Public Key with Code Exchange). In this post I’ll show you how to implement the OAuth flow within your application’s web page.

“Passwordless” refers to authentication methods that do not use traditional passwords, instead relying on other secure methods such as biometrics, temporary codes, or multi-factor authentication (MFA).

Yes, electronic signatures are more secure than traditional (wet) signatures. Learn about physical security, platform security and security certifications.

Phishing is a technique used by attackers to trick individuals into divulging personal information — like login credentials — or launching malware to steal broader sets of data stored on their computers or connected networks.