S
SignFlow
S
SignFlow
Sign InStart Free Trial

Privacy Policy

Last updated: February 1, 2026

1. Information We Collect

When you use SignFlow, we collect information that you provide directly to us, including:

  • Account information: Name, email address, company name, and password when you create an account.
  • Business data: Client information, proposals, invoices, payments, and other data you create within the platform.
  • Payment information: Billing details for your SignFlow subscription. Note that payment card data is processed directly by our payment processor and never stored on our servers.
  • Communications: Messages you send through our support channels or contact forms.
  • Usage data: Information about how you interact with the platform, including pages visited, features used, and actions taken.

2. How We Use Your Information

We use the information we collect to:

  • Provide, maintain, and improve the SignFlow platform
  • Process your subscription payments and manage billing
  • Send transactional emails (invoices, payment receipts, signature requests)
  • Provide customer support and respond to your inquiries
  • Monitor and analyze usage patterns to improve the user experience
  • Detect, prevent, and address technical issues and fraud
  • Comply with legal obligations and enforce our terms of service

3. Data Security

We take the security of your data seriously. SignFlow employs industry-standard security measures including:

  • PostgreSQL row-level security (RLS) for complete data isolation between organizations
  • AES-256-GCM encryption for sensitive credentials at rest
  • TLS 1.3 encryption for all data in transit
  • PCI-DSS compliant payment processing through client-side tokenization
  • Regular security audits and automated vulnerability scanning
  • Strict access controls and audit logging for all operations

4. Third-Party Services

SignFlow integrates with third-party services to provide core functionality. These services have their own privacy policies, and we encourage you to review them:

  • Payment processor: Payment processing and subscription billing
  • Authentication provider: Authentication and user management
  • E-signature provider: Electronic signature collection and document management
  • QuickBooks Online: Accounting data synchronization (when connected by you)
  • Neon: PostgreSQL database hosting
  • Vercel: Application hosting and content delivery
  • Sentry: Error monitoring and performance tracking
  • Resend: Transactional email delivery

We do not sell your personal information to any third party. We share data with third parties only as necessary to provide the services described above.

5. Cookies and Tracking

SignFlow uses essential cookies required for the platform to function, including session cookies for authentication and security tokens. We use Sentry for error tracking and performance monitoring, which may set cookies to identify sessions.

We do not use advertising cookies or share data with advertising networks.

6. Your Rights

Depending on your location, you may have the following rights regarding your personal data:

  • Access: Request a copy of the personal data we hold about you.
  • Correction: Request correction of inaccurate or incomplete data.
  • Deletion: Request deletion of your personal data, subject to legal retention requirements.
  • Export: Request your data in a portable, machine-readable format.
  • Objection: Object to the processing of your data for certain purposes.

To exercise any of these rights, contact us at privacy@signflow.pro. We will respond to your request within 30 days.

7. Contact Us

If you have questions about this Privacy Policy or our data practices, please contact us at:

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the updated policy on this page and updating the "Last updated" date.