Yousign & GDPR

• Yousign does not under any circumstances sell your data to third parties.
• We only collect the data necessary for the performance of our services.
• We keep your data for the time necessary to meet our contractual and regulatory obligations and then we delete or anonymise them.
• All data is encrypted.

Yousign collects, processes and stores confidential data of its customers and third-party signatories such as first and last name, email address, telephone number and IP address. This processing is carried out within the framework of the electronic signature service agreement binding Yousign to its customers. Yousign retains this data for the entire duration of the agreement.

The data in the audit trail, created during each signature procedure, is retained by the third-party archiver for a period of 10 years from its creation without the expiry or termination of the agreement being able to call into question this retention period.

Details of the data collected, processed and stored by Yousign are set out in Yousign's Privacy Policy.

When our customers use our Services, we collect and process certain information on their behalf. Our customers are therefore controllers of the data in accordance with Article 4 of GDPR. Yousign, as a service provider, then acts as a processor. As such, we undertake to assist our customers in ensuring the compliance of their processing.

We have technical and organisational measures in place for the security and protection of your data.

For more details, please see our security page.

Yousign has put in place a series of measures to ensure compliance with GDPR.

• We have a multidisciplinary team with experienced members of the Legal, Technical and Quality teams who ensure Yousign's compliance.
• We train our employees and raise their awareness of cybersecurity and data protection.
• We apply the principle of data protection by design when developing new services or improving our existing services.
• We guarantee the exercise of your rights in accordance with the law.
• We guarantee the traceability and control of our processing operations by keeping a record of processing activities.
• We have a procedure for notifying personal data breaches.

Yes. We keep up to date a comprehensive list of all our subcontractors and have ensured that all those who might process personal data undertake to comply with existing legal frameworks. We can provide you with this list upon request.

Yes. Like most sites, we use cookies to facilitate the use of our site, improve its performance and security, converse with you, analyse your visit and better understand your needs in order to support you. We have ensured that the cookies we use comply with privacy rules.

For more details, please refer to our Cookies Policy.