DocuSign Achieves ISO/IEC 27001 Certification

World’s First ISO Certification for an Electronic Signature Company Further Demonstrates Company’s Commitment to Security, Validates Customers’ Trust

SAN FRANCISCO – January 10, 2012 DocuSign, the global standard for eSignature, today announced the British Standards Institute (BSI) has awarded DocuSign formal ISO/IEC 27001:2005 certification.  DocuSign joins a prestigious group of organizations, including Amazon, Microsoft, and, in the forefront of certifying to this international standard.

“All of us at DocuSign are proud to have received the very significant ISO/IEC 27001 certification from the British Standards Institute,” said Joan Ross, chief security officer at DocuSign. “Achieving ISO/IEC 27001 certification further illustrates our unwavering company commitment to security and reinforces why more global enterprises, business departments, and individual professionals trust their signature to DocuSign than all other cloud-based eSignature providers combined. Customers utilizing DocuSign to achieve business results are leveraging a service globally certified to the highest standards as an information security management system inclusive of our electronic signature service, full scope of enterprise processes, and datacenter procedures.”

ISO 27001 is a set of 133 control standards and their associated activities that an organization must consistently demonstrate, with a rigorous implementation and ongoing improvement lifecycle.  Considered the most effective global scope of security management requirements by industry, academic, and security professionals, the standard emerged out of more than a decade of collective practice and review first in the U.K., and then as a formal global consortium effort and international certification standard.

DocuSign joins many leading organizations that have pursued ISO 27001 certification to reap the following benefits:

  • Reduced sales cycles due to increases in customer confidence of information protection
  • Expanded customer usage of a certified service
  • Customer mitigation of their own business risk  
  • Independent verification to the highest standards of security management practice
  • Assurance of regulatory, contractual, and statutory requirements

The ISO/IEC 27001 certification from BSI is the pinnacle of DocuSign’s long-term commitment to data security. DocuSign offers fully redundant SSAE 16 tested enterprise and data centers, as well as a network, policies, and procedures that have passed 100 percent of security audits with the world’s largest financial services institutions. In addition, the company complies to the Payment Card Industry Data Security Standard (PCI DSS), is TRUSTe certified and adheres to the U.S. – E.U. Safe Harbor framework established by the U.S. Department of Commerce. DocuSign offers an enterprise-class global network with a track record of 99.99 percent system uptime and warrants compliance with the federal ESIGN Act.

Companies interested in learning more about DocuSign’s electronic signature solution and extensive security measures, including , can find more information at


About DocuSign Inc.

DocuSign® is the global standard for eSignature. DocuSign helps customers decrease transaction times, reduce costs, and enhance customer satisfaction with the easiest, fastest, most secure global network for sending, signing, tracking, and storing documents in the cloud. For more information, visit or call 800 098 8113. Visit the DocuSign blog at and follow DocuSign on Twitter, LinkedIn and Facebook.