Security & trust
CheapSign is built for documents that matter. Here’s how we protect them.
Encrypted in transit
Every page and document is served over encrypted HTTPS connections. Your data is never sent in the clear.
Locked, audit-trailed documents
The moment everyone has signed, the document is locked and a tamper-evident audit trail is attached — recording who signed, when, and from where.
Payments handled by Stripe
Card details are entered on Stripe’s PCI-DSS-compliant systems. CheapSign never receives or stores your full card number — only limited data such as the card brand and last four digits.
Per-workspace access control
Documents and templates belong to your workspace. Only invited members can access them, and each account is isolated from every other.
Anti-spoofing email
Our sending domain is protected with SPF, DKIM, and a strict DMARC policy, so signing invitations can’t be easily forged in your name.
Backups
Documents, database, and billing state are backed up nightly, with additional off-site backups — so your records are protected against hardware failure.
You own your data
Your documents are yours. You can download completed PDFs anytime, and request an export or deletion of your data.