Check out BoldSign at the Singapore Business Show, booth 716, on August 30 - 31! Learn More
Check out BoldSign at the Singapore Business Show, booth 716, on August 30 - 31! Learn More
BoldSign is hosted on the Google Cloud Platform and Microsoft Azure servers in the US East data center. We use double encryption to protect your data. The data in storage is encrypted twice: once at the service level and once at the infrastructure level with the AES-256 standard. This provides the highest level of assurance that your data is safe and secure.
For more details, please refer to the Microsoft and Google data center security policies linked below:
All our developers are trained to pay specific attention toward security. Our automated and manual code review processes constantly look for any code that could potentially violate security policies.
We process all payments using Stripe, which has been certified as a PCI Level 1 Service Provider. BoldSign does not have access to customers’ credit card data at all.
In addition to our regular security reviews, we partner with trusted third-party security companies to perform code reviews and various tests across our product ecosystem.
BoldSign undergoes regular penetration testing by our in-house security experts and development team to ensure the highest levels of data security.
BoldSign’s eSignatures are legally compliant with U.S. (ESIGN) and international (eIDAS) eSignature laws. We have also ensured compliance with GDPR.
Our primary database uses a multinode fault-tolerant cluster approach. The database contains backups of every hour for the last 30 days. Other databases use point-in-time recovery (PITR) for any time in the last 30 days.
Our distributed architecture enables us to continuously maintain the availability of our application, providing 99.9% durability over a year and enabling users to access their data at any time.
For more security details, please refer to our Security Management Report.
Every document is accompanied by an audit log. All actions performed in the document will be logged with the user details along with IP address and time stamp.
BoldSign allows you to assign granular access to entities with roles and custom permissions.
Authenticate with and access BoldSign services through an identity provider of your choice using single sign-on.