Your data rights when you sign documents on Signatura.
Last updated: May 7, 2026
The party who sent you the document (the “sender”) is the data controller for most of your information. Signatura processes that information on the sender's behalf as a data processor. For limited operational purposes — audit-trail integrity, fraud and abuse prevention, and statutory record-keeping required by electronic-signature laws — Signatura also acts as an independent controller.
For requests about your role on a specific document (correcting your name on a contract, withdrawing your signature, etc.), contact the sender first. For data-rights requests that the sender cannot or will not action, or for the data Signatura holds as an independent controller (audit trail, IP records), contact us at privacy@getsignatura.com or use the form below.
Name and email — provided by the sender to identify you as a signer
Signature and initials — drawn, typed, or uploaded by you during signing
IP address, user-agent, and city-level geolocation — recorded when you view or sign to establish the audit trail
Per-action timestamps — sent, viewed, signed, declined, completed, voided
Form field entries — text, dates, or other values you enter in document fields
Signed documents and their audit trails are retained for as long as the sender's account is active and, after the account is closed, for the period required by applicable record-keeping laws (electronic-signature statutes typically require multi-year retention). Pending or unsent documents are kept until the sender deletes them or their account is closed. Auto-Sign analysis caches are kept for at most 1 hour; OAuth and rate-limit records for 15 minutes; error logs for 30 days; verification codes for these data-rights requests for 15 minutes; the audit record of completed data-rights requests for 90 days.
When signing is complete, the signed PDF is delivered to you by email at the address you signed at. Please retain that email — it is your authoritative copy of the executed record. Signatura's ongoing retention of the document is for the sender's records, not for signer self-service; if you lose the email, ask the sender for a fresh copy.
Data is processed primarily in the United States. For international transfers we rely on each sub-processor's published data-protection terms. The full list is at getsignatura.com/sub-processors.
Access — request a copy of all data associated with your email address (use the form below for an instant download).
Erasure — request deletion of your personal data. For signed documents, some data must be retained for legal validity (your name and signature within the signed document and audit trail), but IP addresses and other non-essential data will be removed. For pending or unsent documents we will redact your name and email and delete any signature or field values.
Rectification — correct typos in your name or email before the document is signed by contacting the sender. Once a document is signed, the audit trail is sealed and cannot be retroactively changed.
Portability — download your data in machine-readable JSON via the form below.
Restriction or objection — email privacy@getsignatura.com.
Lodge a complaint — with your local supervisory authority. Common ones: ICO (UK), CNIL (France), BfDI (Germany), AEPD (Spain), Garante (Italy), DPC (Ireland).
You are not obligated to sign. You can decline at any time before completing the signing — declining ends the session and no signature is recorded. The sender may be notified that you declined.
The Service is intended for individuals 18 years of age or older. We do not knowingly collect personal information from children. If you believe a child has been asked to sign a document via Signatura, contact us at privacy@getsignatura.com.