Providing a global service
Data residency and data access
- The Signature service is architected to provide customers with clarity regarding the storage location of their uploaded and completed documents (“eDocuments”).
- Currently, there are two regional instances of the Signature service for eDocument storage: the United States and the European Union.
- Customers may select the region for the storage of their eDocuments at the time their Signature service account is provisioned.
- Anyone authorized to access an eDocument on the Signature service (e.g. the parties to an eDocument) may do so from anywhere in the world via an Internet connection.
- Data access and storage are independent elements—the region where an eDocument resides within the Signature service and the ability to access it are not connected.
- eDocument content is encrypted via the Signature service and DocuSign employees cannot access eDocuments.
Regional eDocument storage
Currently, DocuSign maintains two instances of the Signature service: one in the United States (US) and the other within the European Union (EU). When DocuSign provisions a customer’s account, the customer’s Signature service is assigned to one of these regions (customers may select their region). This determines where their eDocuments will be stored. Once the account and region are established, eDocuments are stored only within DocuSign data centers in that region.
Redundant storage across regional data centers
Within both the US and the EU, DocuSign utilizes multiple secure data centers for the Signature service. Redundant copies of eDocuments may be stored in every data center within the particular region to which a customer’s account is assigned. This helps assure the performance, availability, and business continuity of the Signature service.
Sharing of data between regions
To facilitate a “broad global access” user experience, some data is shared between the US and EU instances of DocuSign Signature service. This includes:
- Customer account identity information
- Audit trail data on the transactions generated by the Signature service (see Transaction Data for additional detail)
For example, if an envelope is sent by a customer with an account in the EU, to Jane Anderson, an existing user residing in the US, the identity data shared between the two regional instances of the Signature service would be used to alert Jane; and the email notifying Jane of the eDocument would come from the US instance. However, the signing experience would be directed to the EU instance of the Signature service and the eDocument would be stored in the EU region.
An additional example of how this information is used includes when customers require customer or technical support. However, data shared between the two instances does not include the actual eDocuments. Customer eDocuments are always stored in the region of the account that sent the eDocuments through the Signature service.
eDocument access and retention
With the DocuSign Signature service, customers have complete control over the storage of their eDocuments and who can access them.
Controlled Access Rights
The Signature service allows customers to control who can access their eDocuments, which is limited to the customer’s authorized users and their designated eDocument recipients. The Signature service is architected such that all eDocument content is encrypted upon upload and inaccessible by DocuSign employees.
Any customer-authorized user or designated recipient may access an eDocument on the Signature service from any location in the world via an Internet connection to DocuSign’s website (www.DocuSign.com).
Retention of eDocuments
Customers control the storage and deletion settings for eDocuments located in their Signature service account. Completed eDocuments are automatically stored in the Signature service, but customers may choose to:
- Delete their eDocuments
- Store them in the Signature service throughout the term of their subscription
- Download their eDocuments stored on the Signature service at any time during their subscription