Docusign Trust Center

Trust Center

Your source for our latest security &
system performance information

Meeting the most rigorous security standards in the world

DocuSign meets and exceeds some of the most stringent US, EU, and global security standards. DocuSign's commitment to and significant ongoing investment toward protecting customer data extends to all of DocuSign's operating environments, not just the core DocuSign Signature service itself —and third-party audit reports back it up. DocuSign is ISO 27001:2013 and SSAE 16, SOC 1 Type 2, SOC 2 Type 2 certified and tested internationally – across the entire company and its data centers.

Learn More

Feb. 8, 2018

Update 2/8/2018 – Final DocuSign Update on Meltdown and Spectre Vulnerabilities

DocuSign has addressed the Spectre and Meltdown vulnerabilities across our service, protecting customers from potential exploitation. Engineering teams have carefully monitored and measured performance during the rollout of these patches and no measurable service degradation has been encountered. Our incident ...

Jan. 31, 2018

Update 1/31/2018 @ 8.45 AM Pacific Time - New Phishing Campaign Observed Today

DocuSign has observed a new phishing campaign that began the morning of January 31, 2017 (Pacific Time).

The email purports to come from "Docusign Inc." using the email address with the subject “Your document Receipt <numbers> for ...

Jan. 12, 2018

Update 1/12/2018 - DocuSign Meltdown and Spectre Response Status

Our security and engineering teams have completed validation testing and have been actively rolling out patches to address the Meltdown and Spectre vulnerabilities across all of our environments. We have taken a methodical approach to remediation using a canary system ...