Our #1 Concern is
Everything uploaded to SeamlessDocs are kept private.
SeamlessDocs utilizes bank grade security and proprietary encryption techniques to ensure the highest level of security for your documents and data. SeamlessDocs utilizes 256 bit SSL encryption in addition to state of the art server infrastructure to make sure that all of your data and documents are private and secure.
Any data or documents uploaded to SeamlessDocs is kept private and can viewed, edited, or signed by users or people as you direct. Your files will always be kept private and never used for any purposes other than you specify. Any documents added to your Template Gallery will only be accessible within your account and accessible only to Users that you specify.
All signed documents are accessed over a secure HTTPS channel using 256 Advanced Encryption Standard (AES). This is the same level of encryption to what banks and government agencies utilize. We have multiple layers of encryption using advanced cryptographic key methodologies to make sure your data is always secure.
This is the basic SeamlessDocs cloud architecture. It is securely organized to ensure that firewalls separate data and servers as well as make sure that any information is ALWAYS transferred over a 256 encrypted connection.
SeamlessDocs tracks all activity on the platform and with any signing activity. We track various info points as well as utilize secure cryptographically generated encryption keys at each step of the way. We track things such as name, email, IP address and additional User Agent information. We utilize state of the art hashing technology to ensure that the data and documents cannot be tampered.
SeamlessDocs works with the most trusted in hosting and database specialists to configure our server architecture. Our servers are hosted on dedicated servers with a firewall as well as multiple other protection tools as a layer. We use state of the art processes to ensure that go over and above when it comes to security and privacy.
Our security management model consists of four main stages: Plan, Do, Check, Act, as recommended by the ISO 27001 standard. Our Customer Security Program, built on the foundation of this model, combines SeamlessDocs expertise with technology and services. The result is a differentiated service level for you and your business goals.
SeamlessDocs prides itself on implementing best practices to secure our customer's data. We host our servers on Amazon Web Services, and many of the specifics in this document reflect the ways in which we leverage the massive investments that Amazon itself makes in security to the benefit of our customers.
Our web servers use the strongest grade of HTTPS security (TLS 1.2) so that requests are protected from eavesdroppers and man-in-the-middle attacks. Our SSL certificates are 2048 bit RSA, signed using SHA256. Static files are stored in Amazon S3 - which includes PDFs, Attachments, and Signed PDFs. While our attachments are encrypted, anyone with access to the attachment URL can download it. Our Database is PostgreSQL hosted on AWS RDS in US-West.
SeamlessDocs production data is processed and stored within Amazon's award winning data centers, which use state-of-the-art multilayer access, alerting, and auditing measures, including:
Code Reviews and Production Sign Off:
All changes to source code destined for production systems are subject to pre-commit code review by a qualified engineering peer that includes security, performance, and potential-for-abuse analysis. Prior to updating production services, all contributors to the updated software version are required to approve that their changes are working as intended on staging servers.
We follow the principle of least privilege in how we write software as well as the level of access employees are instructed to utilize in diagnosing and resolving problems in our software and in response to customer support requests.
We use Google account infrastructure to verify employee account identity and require physical security keys and/or two-factor authentication for all internal applications without exception. Access to administrative interfaces additionally enforce administrator permissions where applicable, and all administrative access is logged and auditable via web server logs.
SeamlessDocs maintains a 99.9% uptime a year. We have a 24/7 on call rotation of full time engineers, and detailed monitoring to ensure that our service is always available for your customers. While scheduled maintenance is extraordinarily rare, and we will provide a two week advance notice when it is deemed necessary. We make updates and improvements to SeamlessDocs continuously and without downtime, so you are always using the latest version.
ISO/IEC 27001 is the only auditable international standard, and defines the requirements for an Information Security Management System (ISMS). The standard is designed to select adequate and proportionate security controls.
SSAE16 is an AICPA (American Institute of Certified Public Accountants) auditing standard intended to provide customers and prospects with third party validated visibility of a service provider's controls.
Safe Harbor is the US Department of Commerce framework for meeting the European Union's Data Protection requirements. Our hosting facilities comply with the U.S.-EU Safe Harbor Framework and the U.S.-Swiss Safe Harbor Framework as set forth by the U.S. Dept of Commerce regarding the collection, use, and retention of personal information from EU member countries and Switzerland.
The Content Protection and Security Standard (CPS) is sponsored by the Content Delivery & Security Association (CDSA). CDSA is an international association that advocates the innovative and responsible delivery and storage of entertainment, software, and information content. CDSA has focused its activities on anti-piracy and content protection standards.
SeamlessDocs has a Plug In that can be added to your account to enable ADA compliance for all your docs. This includes the ability to read it aloud, increase text size and other tools to meet your ADA Compliance needs.
SeamlessDocs has solutions to help make all your PDFs and Web Forms Section 508 Compliant automatically. Inquire about our Section 508 Solution Plug In for your SeamlessDocs account and we can help automate the process of your compliance.
SeamlessDocs has convened a third party committee of security and cryptography expert on a quarterly basis to provide a security analysis of the infrastructure and basic processes. In addition, the committee ensures that all processes and systems are being upheld and abiding by best practices.
Lets talk Security
Fill out the form below and we will be in touch shortly.
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form :(
30 Vandam St. Floor 2
New York, NY 10013