Security and Compliance

eformsign considers user data security as the first priority

AES-256 bit encryption

Based on the data protection risk assessment, eformsign uses AES-256 bit encryption (256-bit Advanced Encryption Standard) technology for all data encryption process, which the technology is adopted by the U.S. government for protecting top-secret files. AES-256 is one of the most complex levels of encryption among algorithm.

eformsign system automatically encrypts the data or file into the block before writing and reading the data from the system. Also, it does not let any of the unencrypted data to be written on the system.

ISO/IEC 27001:2022 Certified
Information Security Management System

eformsign is certified under ISO/IEC 27001:2022, an internationally recognized standard for establishing, implementing, maintaining, and continually improving an Information Security Management System (ISMS). It is widely recognized as one of the most authoritative certifications in the field of information security. This certification recognizes eformsign's commitment to robust information protection and threat management processes, aligning with international best practices.

ISO/IEC 27017:2015 Certified
Cloud Information Security Management System

eformsign is certified under ISO/IEC 27017:2015, which offers guidelines for implementing information security controls tailored to cloud services, addressing areas such as security policies, encryption, secure system development, supply chain management, and incident response. It is effective in proactively managing potential risks within cloud service environments, encompassing security controls that both cloud service providers and users are expected to follow, underscoring eformsign's dedication to robust cloud security measures and alignment with internationally recognized best practices.

ISO/IEC 27018:2019 Certified
Cloud Personal Data Protection

eformsign is certified under ISO/IEC 27018:2019, an international standard that provides guidelines for protecting personally identifiable information (PII) in public cloud environments. This standard outlines security controls and practices that cloud service providers should implement to effectively manage potential privacy risks. eformsign's adherence to these guidelines demonstrates its commitment to robust cloud security measures and alignment with internationally recognized best practices.

Safe data transfer with TLS

In order to prevent any data modification or loss, eformsign implemented TLS (Transport Layer Security) cryptographic protocol. TLS is the standard security technology in setting the link between the web server and browser. This lets the transferred data to be enclosed and private so that no other third party can access the data transaction.

FAQs on Security and Compliance

  • How do I set a timestamp? open

    The timestamp feature can be set only by the admin or template managers.

    1. Click the Template Settings icon of the desired template via eformsign login > Manage templates.
    2. In the Workflow tab, check the 'Timestamp the document when completed' option in the Complete step.

    Now, whenever the document completes its workflow process, the completed PDF document gets timestamped. The record can be checked at any time by opening the document with Adobe Reader.

  • How can I check a document that has a timestamp applied? open
    To check a document that has been timstamped, the document needs to be opened in Adobe Acrobat Reader.(Download link) When opened with Adobe Acrobat Reader,You will see whether the document is certified at the top of the document and click the Signature panel to verify the validity of the signature.
  • What is an audit trail? open
    An audit trail is a record which shows all of the document's process. It contains the document's basic information, written information, process flow, signature information etc. Audit trail is used to check the details of the document.