We strongly discourage the use of Zoho Sign or its associated features to collect sensitive personal data such as credit card information, PIN, and social security number.
Are my documents secure with Zoho Sign?
You trust us with confidential information and documents you own – and we don’t take that lightly! Zoho Sign is based on PKI (public key infrastructure) to provide the highest levels of security for your documents. It gives bank level security meaning that your important documents are encrypted and protected using the same industry-leading technology that banks use. All your data is protected using AES-256 encryption while at rest and SSL encryption while in transit. Further, multi-factor verification, access codes, and audit trails add an extra layer of protection allowing you to send and sign documents with confidence.
Can my digital signature be forged?
When you digitally sign a document, Zoho Sign scans the document and creates a hash that represents the document and the data that it holds. This hash becomes a part of your digital signature. When the recipient authenticates the signature, a similar process is carried out where your signature and the recipient’s hash are then compared. If the results are the same, the signature is valid; if they are different, the signature is not valid.
Can an executed document be manipulated by one of the parties after signing?
No. All documents signed using Zoho Sign are locked and stored in secure servers with bank-level data encryption preventing any future edits to an executed document. Furthermore, the digital signature principles don't allow such changes.
What if a recipient denies signing a document?
Zoho Sign ensures a clear, consistent, and highly detailed audit trail for all your digitally signed documents. This audit trail tracks the IP address and all the steps of the signing process - when the document was opened, viewed, signed, etc, making it difficult for a recipient to claim that they didn't sign the document.
Where is my data stored?
Zoho has its own dedicated data centers in extremely secure locations. Data is protected continuously throughout the year and access to the data centers are restricted using biometric two factor authentication.
Can a digital signature stand tests in the court of law?
Yes, digital signatures are completely legal. According to the Electronic Signatures in Global and National Commerce Act, otherwise known as the “ESIGN Act”, digital signatures have the same legal standing as handwritten signatures. Does Zoho Sign comply with the standard electronic signature laws?
Yes, Zoho Sign complies with the ESIGN Act in the US region and also with all the three levels of electronic signature standards (simple, advanced, qualified) defined by the eIDAS regulation for countries in the European Union.