Supersign
Sign InGet Started

Legal Compliance Built-In

Supersign meets international e-signature regulations. Your signatures hold up in court.

ESIGN Act

US federal law establishing electronic signatures as legally binding

Since 2000

UETA

Uniform Electronic Transactions Act (adopted by 47 states)

Since 1999

eIDAS

EU regulation for electronic identification and trust services

Since 2014

SOC 2 Type II

Security, availability, and confidentiality audit (managed cloud only)

Since 2024

ESIGN Act Compliance

U.S. Federal law establishing electronic signatures as legally binding (2000)

The Electronic Signatures in Global and National Commerce Act (ESIGN) grants electronic signatures the same legal standing as handwritten signatures in the United States.

How Supersign Complies

  • Signer consent obtained before any transaction
  • Records retained and accessible for all parties
  • Signer identity verification through email and optional 2FA
  • Complete audit trail showing intent to sign
  • Ability to retain electronic records in original format

UETA Compliance

Uniform Electronic Transactions Act (adopted by 47 U.S. states)

UETA provides a legal framework for electronic signatures and records at the state level, complementing the federal ESIGN Act.

Key Requirements Met

  • Attribution of electronic signatures to specific individuals
  • Tamper-evident records showing any document modifications
  • Retention of records in legally admissible format
  • Intent to sign demonstrated through explicit user actions

eIDAS Compliance

EU Regulation for electronic identification and trust services

The European eIDAS regulation establishes a framework for electronic signatures, seals, timestamps, and other trust services across the EU.

eIDAS Signature Levels

Simple Electronic Signature (SES)

Supported - Basic email-based signing workflow

Advanced Electronic Signature (AES)

Supported - PKI-based signatures with audit trails

Qualified Electronic Signature (QES)

Available via integration with qualified TSPs

SOC 2 Type II

Security, availability, and confidentiality audit (Managed Cloud)

Our managed cloud infrastructure is SOC 2 Type II certified, demonstrating our commitment to security, availability, processing integrity, confidentiality, and privacy.

Trust Service Criteria

  • Security: Comprehensive access controls and encryption
  • Availability: 99.9% uptime SLA with redundant infrastructure
  • Processing Integrity: Audit trails ensure data accuracy
  • Confidentiality: Role-based access and data isolation
  • Privacy: GDPR-compliant data handling and retention

Need Detailed Documentation?

Download our comprehensive compliance and security documentation for your legal and security teams.

Questions About Compliance?

Our legal and security teams are here to help ensure Supersign meets your compliance requirements.

Contact Compliance Team