Privacy Policy

The company providing the Signeur service acts as data controller for personal data the service processes for its own purposes (e.g. statistics, technical operation).

When the service is used as an integration from another organization's system (e.g. via API key), that organization acts as the data controller and Signeur as the processor under Article 28.

Contact: support@signeur.eu.

• Signer's email address and name
• Sender's email address (web form)
• Signer's IP address and user agent
• Content of the document being signed (PDF) — may contain other personal data for which the sender is responsible
• Timestamps (creation, opening, OTP confirmation, signature)
• Cryptographic audit hash (SHA-256)

Purpose: to execute electronic signatures and ensure their evidentiary value per the eIDAS regulation (EU 910/2014), SES level.

Legal bases (GDPR Article 6):

• 6(1)(b) — performance of a contract (signer themselves) or preparation thereof
• 6(1)(f) — legitimate interest: audit trail enables later proof of the signature

• Unsigned requests expire 30 days after creation, after which they may be deleted
• Signed documents and their audit trail are retained as long as the document has evidentiary value — generally for its entire lifecycle
• OTP codes are deleted after use or 10 minutes after creation (stored hashed, never in plaintext)

We use the following sub-processors for personal data processing:

• Vercel Inc. — application platform hosting and cookieless page view metrics (Vercel Web Analytics)
• Supabase Inc. — database and file storage service
• DNScale OÜ (Postscale, Estonia, registration code 16776331) — transactional email delivery on EU infrastructure
• Ahrefs Pte Ltd — SEO measurement and visitor statistics. No personally identifiable data, no cookies.

We do not share personal data for marketing or analytics purposes with third parties.

Email delivery (DNScale OÜ / Postscale) occurs entirely on EU infrastructure — no transfer outside the EEA.

Vercel and Supabase are US-based companies but offer infrastructure in the EU. We aim to keep processing in the EU by selecting the EU region for both services.

Any transfers outside the EEA are based on EU Commission Standard Contractual Clauses (SCC, EU 2021/914).

Under GDPR you have the right to:

• Verify what data we process about you
• Request rectification of incorrect data
• Request deletion (note: restrictions apply for signed documents with evidentiary value)
• Request restriction of processing
• Object to processing based on legitimate interest
• Request data portability to another system

Requests: support@signeur.eu. We respond within one month.

• TLS 1.3 encryption for all data in transit
• AES-256 encryption for file storage (at rest)
• Signature links use 256-bit cryptographically random tokens
• Email verification via 6-digit OTP stored only as a hash, expiring in 10 minutes
• API access via Bearer tokens; tokens stored only as SHA-256 hashes
• Per-event audit trail stored as JSONB records

You have the right to lodge a complaint with the supervisory authority if you believe processing infringes GDPR. In Finland the competent authority is Office of the Data Protection Ombudsman.

We update this policy when the scope of processing, sub-processors, or legal bases change. The previous version is available upon request. We announce material changes within the service.

When you register a Signeur account with your email, we create a user profile (name, country, preferred language, optional VAT ID for billing). You can create organizations to which you can invite other users; each organization has its own settings, billing balance, API keys and webhook endpoints.

Each request, API key and subscription is owned either by your personal account or by an organization. Organization admins control its settings and can invite/remove members; members can read and act but not change billing or membership.

When you send a signature request without being logged in, we verify your email ownership with a 6-digit OTP code. After verification, we automatically create a lightweight Signeur account for your email address. This means you can later log in with the same email via magic link and see all your previous sends in the dashboard immediately.

The auto-created account contains no name, country or other personal information until you fill in the onboarding form after logging in. If you never log in, the account remains passive. To delete the account (and lose the ability to see your previous sends in one place), log in and use the account deletion feature in Settings. Signed PDFs are retained for 10 years by law regardless of account deletion.

You can permanently delete your account from Settings. We cancel active subscriptions in Stripe, remove your user profile and personal API keys, and revoke your memberships in organizations. Audit logs and signed documents are retained anonymously for legal evidentiary retention (10 years under Finnish law).

Organization admins can delete an organization once it has no other members and no signature requests. Stripe subscriptions are cancelled and the Stripe customer is closed.