ContractSign is designed to support EU privacy obligations for auditability, access control, and data handling.
Workspace owners act as controllers for the contract content and signer data they upload into the platform. ContractSign acts as a processor for hosted customer data.
Technical safeguards include authenticated access, organization isolation, audit logging, encrypted transport, and configurable retention practices.