Privacy Policy
Your documents are yours. Here's exactly what we collect, why, and what we promise never to do with it — in language a human can actually read.
Last updated: 2026
1. What we collect
We try to collect as little as we reasonably can. That includes:
- Account information — your name, email address, and password (stored hashed), plus billing details handled by our payment processor.
- Documents & signing data — the files you upload, the signatures applied, and the audit-trail metadata that proves who signed what and when (timestamps, signer email, IP address, and consent records).
- Usage information— basic, mostly aggregated analytics about how the Service is used so we can fix what's broken and improve what isn't.
- Support correspondence — anything you send us when you ask for help.
2. How we handle & protect your documents
Documents and signing data are encrypted in transit (TLS) and at rest. Access is limited to the people and systems that need it to operate the Service, and protected by strong authentication. Audit trails are tamper-evident, so a completed record can't be quietly altered after the fact.
We process your documents to provide the Service to you — preparing, delivering, signing, and storing them — and for nothing else.
3. What we will never do
We don't sell your personal data. Full stop. We don't mine the contents of your contracts, we don't use your documents to train AI models, and we don't build advertising profiles from what you sign. Our business model is gloriously simple: you pay us $3 a month, so you're the customer — not the product.
4. Why we use your data (lawful basis)
- To perform our contract with you — running the Service and processing your documents.
- Legitimate interests — keeping the Service secure, preventing abuse, and improving it.
- Legal obligations — retaining records where the law requires.
- Consent — for anything optional, like non-essential analytics cookies.
5. Retention
We keep your account and document data for as long as your account is active, and afterward only as long as needed to provide the Service, comply with legal obligations, resolve disputes, and enforce our agreements. Completed signed documents and their audit trails are kept so they remain available to you as records — and you can delete or export them at any time.
6. Your rights
Depending on where you live, you may have rights to access, correct, delete, or export your personal data, to object to or restrict certain processing, and to withdraw consent. We honor these requests — including GDPR and similar data-protection rights — for everyone, wherever we're able to. See our GDPR & Data Protection page for more, and email hello@sign.pink to exercise any of them.
7. Cookies
We use a small number of essential cookies to keep you logged in and the Service working, plus optional analytics cookies you can decline. There's a full breakdown on our Cookie Policy.
8. Processors & sub-processors
We rely on a short list of trusted service providers to operate — for example cloud hosting, a payment processor for billing, an email provider for delivering documents and notifications, and an analytics tool. Each is bound by data-protection terms and may only process your data on our instructions. We can provide our current list of sub-processors on request.
9. International transfers
Where data is transferred across borders, we use appropriate safeguards such as standard contractual clauses to keep it protected to the standard you'd expect.
10. Children
The Service isn't directed to children and we don't knowingly collect their data.
11. Changes & contact
If we update this policy, we'll post the new version here and, for material changes, let you know directly. Questions or requests? Email hello@sign.pink — a real person will answer.
Privacy you don't have to read the fine print to trust.
No selling, no mining, no ads. Just $3/month e-signatures.