Privacy Policy

Last updated on October 4th, 2015.

This Privacy Policy describes DocuSign, Inc.’s information collection and use practices. This Privacy Policy refers to DocuSign Inc. as “we,” “us,” or “our,” and refers to the reader as “you” or “user.”  If you access or use our websites, including and, our mobile applications, our Web client or Professional client, and/or any of our other sites, products, or services that link to this Privacy Policy (“Services”), you consent to our collection and use of your information as described in this Privacy Policy, including that your information may be transferred to and stored in the United States.  IF YOU DO NOT AGREE TO THIS PRIVACY POLICY, PLEASE DO NOT USE THE SERVICES.   

DocuSign, Inc. has been awarded TRUSTe’s Privacy Seal signifying that this Privacy Policy and our practices have been reviewed by TRUSTe for compliance with TRUSTe’s program requirements including transparency, accountability, and choice regarding the collection and use of your personal information. TRUSTe’s mission, as an independent third party, is to accelerate online trust among consumers and organizations globally through its leading privacy trustmark and innovative trust solutions.

This Privacy Policy explains:

  1. The Information We Collect
  2. How We Use the Information We Collect and How We Collect it
  3. How We Share Information
  4. Online Analytics and Tailored Online Advertising
  5. Data Retention, Accessing Your Information, and Closing Your Account
  6. Email and Direct Marketing Choices
  7. How we Protect Your Information
  8. Linked Sites and Services
  9. Users From Outside the United States
  10. Children’s Privacy
  11. Your California Privacy Rights
  12. Changes to this Policy
  13. How to Contact Us

1. The Information We Collect and How We Collect it.

To provide the Services, we need to know certain information about you and other users with whom you interact.  The types of information we collect depends on how you use the Services.  Several categories of information are collected from you, as described below.

A. Information Provided by You

Information that you may provide to us includes, but is not limited to:

  • name
  • email addresses (including yours and any authorized user’s)
  • mailing address
  • phone number
  • billing and financial account information

For example, we may collect information from you when you:

  • Log in or create an account
  • Start or sign a contract
  • Create or edit your user profile
  • Complete an online form
  • Enter a sweepstakes or contest or register for a promotion
  • Request certain features (e.g., newsletters, demos, and other products)
  • Contact customer support
  • Provide a user testimonial

You may also choose to provide the following:

  • Social Media Account Information. When you use a social media account to sign in to the Services, you provide us with the user ID associated with any social media account (e.g., Facebook) that you use. If you sign in with or otherwise connect your social media account to the Services, you authorize us to collect, store, and use in accordance with this Privacy Policy any and all information available to us through the social media interface, including without limitation any information that you have made public in connection with your social media account, information that the social media service shares with us, or information that is disclosed as being shared during the sign-in process.  Please see your social media provider’s privacy policy and help center for more information about how they share information when you choose to connect your account.
  • User-Generated Content. If you choose to comment on our blogs or in our community forums or otherwise volunteer information, you provide us with that information and it may be available to other users and even the public. This means that it can be read, collected, and used by others without our knowledge, including to send unsolicited communications.
  • Profile Information. Our Services may allow users to search for other users and view those users’ public profile information (also called your “ID card”). To change the information appearing in your public profile or to make this information private, please visit your account settings.
  • Information About Others. You may provide us with information about others when you.
    • Create and Send Envelopes. When users create envelopes through our Services and arrange for them to be sent to recipients, they provide information like name and email address of the recipients.  When users want additional assurances about the identity of the individual signing their contracts, they may require us to collect some additional information that we use to authenticate recipients before they are able to sign a contract.
    • Refer Friends. When users use our referral service to tell a friend about our Services, they will provide a friend’s name and email address.  We will send a one-time email to the address provided, inviting the friend to try the Services.  DocuSign stores this information for the purposes of sending this email and tracking the success of our referral program. The individuals who receive these messages can follow the instructions for unsubscribing in the message or contact us at the email address in Section 13 below to request that we remove this information from our database.

The decision to provide us with information is optional; however, if you elect not to provide certain information, you may not be able to access certain content or features available through the Services. 

B. Information That Is Collected Automatically

We may automatically collect certain information about your use of the Services, including when you use our websites without logging in.

Device and Usage information. We may collect information about:  (i) the computers or devices (including mobile devices) you use to access the Services; and (ii) how you use the Services.  Examples of the information that we may automatically collect and analyze include, but are not limited to:

  • IP Address, a.k.a. internet protocol address (your point of access to the Internet). IP address can reveal a web user’s general location (city/state/country).
  • Location Information, including the geo-location of your device. If you use our mobile apps, you will be asked to give the apps access to your mobile device’s geolocation data.  If you grant such permission, we may collect information about your precise geolocation information (i.e., your real-time geographic location), and may use that information to customize the Services with location-based information and features.  If you access the Services through a mobile device and you do not want your device to provide us with location-tracking information, you can withhold permission to access that data or you should be able to turn off the GPS or other location-tracking functions on your device by visiting settings or privacy settings or settings for location services;
  • Unique Device Identifiers, including, but not limited to, MAC Address, IDFA, IDFV, IMEI, and Advertising IDs;
  • Device Attributes, including browser types, browser language, and operating system;
  • Usage Data, including information related to the ways in which you interact with the Services, such as: web log data, referring and exit pages and URLs, platform type, the number of clicks, domain names, landing pages, pages and content viewed and the order of those pages, the amount of time spent on particular pages, the date and time you used the Services, the frequency of your use of the Services, error logs, and other similar information; and
  • Transactional Data relating to the contracts you upload or sign on the Services, such as: envelope metadata, envelope subject, authentication method used, and envelope history.

As described further below, we may use third-party analytics providers and technologies, including cookies and similar tools, to assist in collecting this information.

Cookies and Related Technologies. We use “cookies” and other “tracking” technologies for a variety of purposes.  The technologies we may use include, but are not limited to: (i) browser cookies; (ii) web beacons; (iii) tracking pixels; and (iv) local shared objects (“flash cookies”).  Our uses of cookies and related technologies include, but are not limited to: storing your username and password; analyzing usage of the Services by collecting the device/usage information discussed above; customizing the Services; and personalizing and delivering the advertising displayed by or within the Services or our emails, as well as advertisements that may be displayed on other sites or mobile applications.  As we adopt additional technologies, we may also gather additional information through other methods.

Most browsers automatically accept cookies, but you can modify your browser setting to decline cookies by visiting the Help portion of your browser’s toolbar. If you choose to decline cookies, please note that you may not be able to sign in, customize, or use some of the interactive features of the Services. Flash cookies operate differently than browser cookies, and cookie management tools available in a web browser will not remove flash cookies.  To learn more about how to manage flash cookies, you can visit the Adobe website and make changes at the Global Privacy Settings Panel. For more information about our use of cookies and related technologies, please see our Cookies Policy.

C. Information from Other Sources

We may obtain information about you from other sources such as marketers, partners, affiliates under common ownership or control with DocuSign, researchers, and others.  For example, if you register for DocuSign on another website or use a website that facilitates your activity on DocuSign, that website may provide information about you and your transactions to us.

2. How We Use the Information We Collect.

In general we use the information we collect to provide and administer the Services. More specifically, we might use the information we collect to:

  • Provide you with the services and products you have requested;
  • Send you records regarding our relationship or your transactions;
  • Notify you about new features, products, and special events;
  • Provide you with marketing communications about our products and services as well as third party products and services we think may be of interest to you; and send you newsletters;
  • Administer sweepstakes and contests;
  • Personalize and deliver content and advertising on the Services;
  • Test changes and develop new features, products and services;
  • Generate and review data and reports describing our user base and usage patterns;
  • Analyze the accuracy, effectiveness, usability, or popularity of the Services and perform research;
  • Verify your identity, deter and prevent fraud, and enforce the legal terms that govern your use of the Services; and
  • Resolve disputes and troubleshoot the Services.

We may combine information that we collect or receive through the Services with information we obtain from other sources and use it as described in this Privacy Policy.

Aggregated or De-Identified Data - We may aggregate and/or de-identify the information we collect to limit or prevent identification of any particular user or device.  Our use and disclosure of aggregated and/or de-identified information is not subject to any restrictions under this Privacy Policy, and we may disclose it to others without limitation for any purpose.

3. How We Share Information.

We do not rent, sell, or share your information with third parties except as described in this Privacy Policy. We may share your information with the following types of recipients and for the following purposes:

  • Other Users Designated by You. If you invite other users to access, use, or edit content you create through the Services (for example, if you invite others to view or sign a document), we will make such content available to the individuals you invited.
  • Service Providers. We may share your information with third parties that we refer to as service providers to assist us in providing services to you.  For example, we might use these third parties to provide search technology, advertising services, authentication systems, bill collection and fulfillment, fraud detection, customer support, and recruiting.  Our contracts with service providers contain terms governing their use of your data.
  • Social Media Services. If you connect to a third party service (such as Facebook or Twitter) through an icon or link on the Services or otherwise link your account with a third party service, we may share the contents of your post and associated information (such as your user name, the fact that your connection originated from the Services, and other relevant usage and diagnostic information) with such third party.  Once such information is shared, the use of your information will be subject to that service’s privacy policy and this Privacy Policy will not apply.
  • Affiliates. We may share your information with other companies under common ownership or control with DocuSign.
  • Safety, Security, and Compliance with Law. We may share your information when we believe in good faith that such sharing is reasonably necessary to investigate, prevent, or take action regarding possible illegal activities or to comply with legal process (e.g. a subpoena).  We may also share your information in situations involving potential threats to the physical safety of any person, violations of this Privacy Policy or our user agreements or terms; or to respond to the claims of violation of the rights of third parties and/or to protect the rights, property and safety of DocuSign, our employees, users, or the public. This may involve the sharing of your information with law enforcement, government agencies, courts, and/or other organizations.  For more information about our law enforcement policies, please click here.
  • Business Transactions. As we develop our business, we may sell, buy, merge or partner with other companies or businesses, or sell some or all of our assets. In such transactions, user information may be among the transferred assets.  If DocuSign is involved in a merger, acquisition, or sale of all or a portion of its assets, you will be notified via email and/or a prominent notice on our websites of any change in ownership or uses of your information, as well as any choices you may have regarding your information.
  • Consent. We may share your information in other ways and for new purposes if you have asked us to do so or have consented to such sharing. For example, we post customer testimonials on our Services that may identify you if we have received your consent. 

4. Online Analytics and Tailored Online Advertising

Online Analytics.

We may use third-party web analytics services on our Services, such as those of Google Analytics and Mixpanel.  These providers use cookie-related technologies (described in the “Information that is Collected Automatically” section above) to help us analyze how users use the Services, including by noting the third-party website from which you arrive.  The information collected will be disclosed to or collected directly by these service providers, who use the information to evaluate your use of the Services.  To prevent Google Analytics from using your information for analytics, you may install the Google Analytics Opt-Out Browser  by clicking here, and you may also use Mixpanel’s opt out by clicking here.

Tailored Online Advertising.

Third parties whose products or services are accessible or marketed via the Services may also place cookies or other tracking technologies on your computer or other device to collect information about your use of the Services, in order to (i) inform, optimize, and serve advertising content based on past visits to our Services and other sites and (ii) report how our advertising content impressions, other uses of advertising services, and interactions with these advertising impressions and services are related to visits to our Services. We also allow other third parties (e.g., ad networks and ad servers such as Google Analytics, AdRoll, and AppNexus, and others) to serve tailored advertising to you on the Services, and to access their own cookies or other tracking technologies on your computer or other device you use to access the Services. We neither have access to, nor does this Privacy Policy govern, the use of cookies or other tracking technologies that may be placed by such third parties.

If you are interested in more information about tailored browser advertising and how you can generally control cookies from being put on your computer or mobile browser to deliver tailored advertising (i.e., not just for the Services), you may visit the following pages/sites to learn more and opt-out of receiving tailored advertising from companies that participate in those programs.

To opt out of Google Analytics for Display Advertising or customize Google Display Network ads, you can visit the Google Ads Settings page.

Please note that to the extent advertising technology is integrated into the Services, you may still receive advertising content even if you opt-out of tailored advertising.  In that case, the advertising content will just not be tailored to your interests.  Also, we do not control any of the above opt-out links and are not responsible for any choices you make using these mechanisms or the continued availability or accuracy of these mechanisms.

When accessing the Services from a mobile application you may also receive tailored in-application advertisements. Each operating system: iOS, Android and Windows Phone provides its own instructions on how to prevent the delivery of tailored in-application advertisements. You may review the support materials and/or the privacy settings for the respective operating systems in order to opt-out of tailored in-application advertisements.  For any other devices and/or operating systems, please visit the privacy settings for the applicable device or operating system or contact the applicable platform operator.

California Do Not Track Disclosure. We are committed to providing you with meaningful choices about the information collected on our Services for third party purposes, and that is why we provide above the NAI “Consumer Opt-out” link, DAA opt-out link, TRUSTe opt-out link, and Google opt-out link.  However, we do not recognize or respond to browser-initiated Do Not Track signals, as the Internet industry is currently still working on Do Not Track standards, implementations and solutions.

5. Data Retention, Accessing Your Information, and Closing Your Account.

Data Retention. We will retain your information for as long as your account is active or as necessary for legitimate business purposes.

Reviewing and Updating Your Account. We offer you the ability to change certain information about you (such as your profile information, password, financial information, and user preferences) by logging into the Services and visiting your Profile.  You can also make a request to modify information that cannot be amended or deleted through the Services by contacting us using the contact information below in Section 13.  We will take reasonable steps to permit you to modify information that is inaccurate or incomplete.

Closing Your Account. If you wish to close your account, please visit your account settings.   Upon your request, we will close your account, and delete your contact information, billing information, and shipping information from our active databases.  You may also request to close your account by emailing us at the contact information provided below in Section 13. Your account will be closed as soon as reasonably possible based on your account activity and in accordance with applicable law.  However, please note that even after you close your account, we may retain and use certain of your information (such as information regarding transactions made through our Services) to prevent fraud, collect any fees owed, resolve disputes, troubleshoot problems, assist with any investigations, enforce our user agreements and terms, and comply with legal requirements.  If you have shared content or information through our Services with other users, such content or information may still be available to those other users if they have not also deleted it or closed their accounts.

6. Email and Direct Marketing Choices.

We provide opt-out information in all commercial email messages we send via an “unsubscribe” link.  We reserve the right to send one message confirming your opt-out from a messaging program.  Please note that it may take us some time to process your requests consistent with applicable law.  You do not have the ability to opt-out of transactional or relationship messages (e.g., signing notifications or account notifications) that we send if you are a registered user of our Services or if you have engaged in transactions with us.  To opt out of other direct marketing from us, please contact us using the email below in Section 13.

7. How We Protect Your Information

We employ physical, electronic, and managerial procedures to safeguard and help prevent unauthorized access to your information. We choose these safeguards based on the sensitivity of the information that we collect, process and store and the current state of technology.  Although we take measures to safeguard against unauthorized disclosures of information, the Internet and the Services are not 100% secure so we cannot assure you that information we collect or store will be protected from all unauthorized access and thereby used in a manner that is inconsistent with this Privacy Policy. 

8. Linked Sites and Services.

Our Services may contain links to third-party websites or apps. Your use of a third party site or app may result in the collection, processing, or sharing of information about you, depending on the site or app. We are not responsible for the content or privacy practices of other websites or services which may be linked on our services. We do not endorse or make any representations about third-party websites or services. The information you choose to provide to or that is collected by these third parties is not covered by our Privacy Policy. We strongly encourage you to read such third parties’ privacy policies.

9. Users From Outside the United States.

DocuSign complies with the US-EU Safe Harbor Framework and US-Swiss Safe Harbor Framework as set forth by the US Department of Commerce regarding the collection, use, and retention of personal data from European Union member countries and Switzerland. DocuSign has certified that it adheres to the Safe Harbor Privacy Principles of notice, choice, onward transfer, security, data integrity, access, and enforcement. To learn more about the Safe Harbor program, and to view our certification page, please visit

In compliance with the US-EU and US-Swiss Safe Harbor Principles, DocuSign commits to resolve complaints about your privacy and our collection or use of your personal data. For all inquiries or complaints regarding this Privacy Policy, including European Union or Swiss citizens, you should first contact us using the information provided below. We have further committed to refer unresolved privacy complaints under the US-EU and US-Swiss Safe Harbor Principles to an independent dispute resolution mechanism offered by TRUSTe. If you do not receive timely acknowledgment by us of your complaint, or if your complaint is not satisfactorily addressed by us, please visit the TRUSTe website for information on filing a dispute resolution claim:

By using the Services, you consent to your information being transferred to our facilities, in the United States or elsewhere, and to the facilities of those third parties with whom we share it as described in this Privacy Policy, except in the case of data transfers from the European Economic Area or Switzerland, which are covered under our EU-US and Swiss-US Safe Harbor certifications detailed above.

10. Children’s Privacy.

The Services are not designed for and are not marketed to minors.  We do not knowingly collect or solicit personal information from minors, and we do not knowingly allow such persons to use the Services. If you are a minor, please do not attempt to use the Services or send any information about yourself to us.  In the event that we learn that we have collected personal information from a minor without verified parental consent, we will delete that information as quickly as possible.  If you believe that we might have any information from or about a minor, please contact us using the contact information below.

11. Your California Privacy Rights.

California law permits users who are California residents to request and obtain from us once a year, free of charge, a list of the third parties to whom we have disclosed their personal information (if any) for their direct marketing purposes in the prior calendar year, as well as the type of personal information disclosed to those parties.  As discussed above, we do not currently share personal information with third parties for their own marketing purposes.

12. Changes to this Privacy Policy.

We reserve the right to amend this Privacy Policy from time to time to reflect changes in the law, our data collection and use practices, the features of our Services, or advances in technology.  Please check this page periodically for changes.  Our use of the information we collect is subject to the Privacy Policy in effect at the time such information is used.  If we make any material changes to this Privacy Policy, we will post the changes here and may notify you by email or other means before the change takes effect.  Please review changes carefully. Your continued use of our Services following the posting of changes to this Privacy Policy will mean you consent to and accept those changes.

13. How to Contact Us.

If you have any questions or suggestions regarding our Privacy Policy or practices, you may contact us at or via postal mail at 1301 Second Avenue, Suite 2000, Seattle, WA 98101.