Compliance overview

Meeting and exceeding standards worldwide

DocuSign's top priority is the privacy and security of our customers' information, documents, and data. DocuSign meets or exceeds national and international security standards, including strict security policies and practices that set the standard for world-class information security. We continually drive industry best practices in third-party audits and certifications, third-party assessments, and on-site customer reviews.

Learn how data governance regulations and standards shape DocuSign's security and privacy practices by reading the Data Governance White Paper.

Highlights of DocuSign’s approach

  • DocuSign provides robust security assurance with enterprise-wide ISO 27001:2013 certification, xDTM compliance, and SOC 1 Type 2, SOC 2 Type 2 reports
  • DocuSign delivers industry-leading data confidentiality with application-level AES 256-bit encryption
  • DocuSign's anti-tampering controls help ensure the integrity of customer documents, both in process and completed

  • With near real-time, secure data replication and uptime of 99.99%, customers can count on the availability of DocuSign's service to conduct their business
  • Through DocuSign's multi-faceted verification of signing events, customers can rely on the authenticity of signers
  • DocuSign eSignature provides unique features for non-repudiation, including a digital audit trail and chain of custody