Privacy Policy

Your privacy is important to us. This policy explains how we collect, use, and protect your personal information.

Last updated: January 1, 2024

Privacy at a Glance

Your documents are encrypted with 256-bit encryption

We never sell your personal information to third parties

You control who can access your documents

You can export or delete your data at any time

Table of Contents

1. Information We Collect

Account Information

When you create an account, we collect your name, email address, and password. If you sign up using a third-party service like Google, we receive your profile information from that service.

Document Data

We store the documents you upload for signing, including any signatures, initials, and other annotations added during the signing process. Documents are encrypted and stored securely.

Usage Information

We automatically collect information about how you use MamaSign, including pages visited, features used, and time spent in the application. This helps us improve our services.

Device Information

We collect information about the devices you use to access MamaSign, including device type, operating system, browser type, IP address, and unique device identifiers.

2. How We Use Your Information

Providing Services

We use your information to provide, maintain, and improve MamaSign, including processing document signatures, sending notifications, and providing customer support.

Communication

We may send you service-related emails, such as account verification, transaction confirmations, and important updates. You can opt out of marketing communications at any time.

Security

We use your information to detect, prevent, and respond to fraud, abuse, security risks, and technical issues that could harm MamaSign or our users.

Analytics

We analyze usage patterns to understand how users interact with MamaSign, which helps us prioritize features and improve the user experience.

3. How We Share Your Information

With Your Consent

We share your information when you direct us to, such as when you send a document to another party for signature or share a signed document.

Service Providers

We work with trusted third-party companies that help us provide MamaSign, including cloud hosting, email delivery, and analytics. These providers are bound by strict confidentiality agreements.

Legal Requirements

We may disclose your information if required by law, such as in response to a valid subpoena or court order, or to protect the rights and safety of MamaSign and our users.

Business Transfers

If MamaSign is involved in a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction. We will notify you of any such change.

4. Data Security

Encryption

All data transmitted to and from MamaSign is encrypted using TLS 1.3. Documents at rest are encrypted using AES-256 encryption. Your passwords are hashed and salted.

Infrastructure

We use enterprise-grade cloud infrastructure with SOC 2 Type II certification. Our data centers have 24/7 physical security, redundant power, and environmental controls.

Access Controls

Access to user data is strictly limited to employees who need it to do their jobs. We use multi-factor authentication and audit logs to track all access.

Incident Response

We have a dedicated security team and incident response plan. In the event of a data breach, we will notify affected users as required by applicable law.

5. Your Privacy Rights

Access and Portability

You can access your personal information at any time through your account settings. You can also request a copy of your data in a portable format.

Correction

If your personal information is inaccurate or incomplete, you can update it through your account settings or by contacting our support team.

Deletion

You can request deletion of your account and associated data. Some information may be retained as required by law or for legitimate business purposes.

Opt-Out

You can opt out of marketing communications at any time. You can also control cookies and tracking technologies through your browser settings.

6. International Data Transfers

Data Location

MamaSign processes data in the United States and other countries where we or our service providers operate. We ensure appropriate safeguards are in place for international transfers.

GDPR Compliance

For users in the European Economic Area, we comply with GDPR requirements including data processing agreements and standard contractual clauses for data transfers.

Privacy Shield

We adhere to the principles of the EU-U.S. and Swiss-U.S. Privacy Shield Frameworks, although we recognize these may no longer serve as valid transfer mechanisms.

7. Cookies and Tracking

Essential Cookies

We use essential cookies to enable core functionality like authentication and security. These cookies cannot be disabled.

Analytics Cookies

We use analytics cookies to understand how users interact with MamaSign. You can opt out of analytics cookies through your browser settings.

Marketing Cookies

With your consent, we may use marketing cookies to deliver relevant advertisements. You can manage your preferences in our cookie settings.

8. Children's Privacy

Age Requirement

MamaSign is not intended for children under 16. We do not knowingly collect personal information from children. If we learn we have collected data from a child, we will delete it.

9. Changes to This Policy

Updates

We may update this Privacy Policy from time to time. We will notify you of significant changes by email or through a notice on our website before the changes take effect.

Questions About Privacy?

If you have any questions about this Privacy Policy or our data practices, please contact our privacy team.

privacy@mamasign.com