CheapSign

Security & trust

CheapSign is built for documents that matter. Here’s how we protect them.

🔐

Encrypted in transit

Every page and document is served over encrypted HTTPS connections. Your data is never sent in the clear.

📑

Locked, audit-trailed documents

The moment everyone has signed, the document is locked and a tamper-evident audit trail is attached — recording who signed, when, and from where.

💳

Payments handled by Stripe

Card details are entered on Stripe’s PCI-DSS-compliant systems. CheapSign never receives or stores your full card number — only limited data such as the card brand and last four digits.

👤

Per-workspace access control

Documents and templates belong to your workspace. Only invited members can access them, and each account is isolated from every other.

📧

Anti-spoofing email

Our sending domain is protected with SPF, DKIM, and a strict DMARC policy, so signing invitations can’t be easily forged in your name.

💾

Backups

Documents, database, and billing state are backed up nightly, with additional off-site backups — so your records are protected against hardware failure.

🗂️

You own your data

Your documents are yours. You can download completed PDFs anytime, and request an export or deletion of your data.

Security is an ongoing process. If you believe you’ve found a vulnerability, please email contact@qalamsoftware.com — we take reports seriously and will respond promptly.