DocSafe Limited

electronic signature

Advanced electronic signature technology based on public key cryptography. Allows users to trigger simple and complex signing processes with multiple parties. Additional authentication methods are available (facial recognition, single use codes).


  • Round robin electronic signing
  • Bulk distribution for electronic signing
  • Automatic distribution and archiving of signed copies
  • Brand support
  • Extra authentication methods (facial recognition, one-time codes)
  • Deed (witness) signing (checking for co-location of signees)
  • Automatic reminders
  • Templating capabilities
  • Free verification of signed documents
  • Multi-document transaction capabilities


  • High speed of transactions
  • No need for manual filing and archiving
  • No need to have an account to sign a document
  • Easy search and retrieval of signed documents
  • Lower transaction cost (no need for printers, paper and scanners)


£15 to £45 per licence per month

Service documents

G-Cloud 9


DocSafe Limited

Daniel Stachowiak


Service scope

Service scope
Software add-on or extension No
Cloud deployment model Hybrid cloud
Service constraints There are no constraints at present.
System requirements
  • Internet connection
  • Modern browser

User support

User support
Email or online ticketing support Email or online ticketing
Support response times We have a LiveChat support that is logged and answered within a few hours.
User can manage status and priority of support tickets No
Phone support Yes
Phone support availability 9 to 5 (UK time), Monday to Friday
Web chat support Web chat
Web chat support availability 9 to 5 (UK time), Monday to Friday
Web chat support accessibility standard None or don’t know
How the web chat support is accessible We are using LiveChat ( but can easily provide our own chat functionality that can be end-to-end encrypted.
Web chat accessibility testing We have been receiving chats for the last 6 months and have been logging and analysing them on a regular basis. We have not done any additional testing.
Onsite support Yes, at extra cost
Support levels Online support is included in the subscription price and is available during business hours.
On-site support is available but is billed on an hourly basis and needs to be pre-agreed.
Clients are assigned a cloud support engineer.
Support available to third parties Yes

Onboarding and offboarding

Onboarding and offboarding
Getting started There is a 14-day free trial. Anyone can sign by using the following link:

We provide online tutorials which are available here:
Service documentation Yes
Documentation formats Other
Other documentation formats Online wiki
End-of-contract data extraction There are several options:
1. Download of the data to one's desktop.
2. Export of one's data to a Dropbox account.
End-of-contract process Self-service data export is included in the price.
Bespoke data export (to an unsupported cloud storage facility) is charged separately.

Using the service

Using the service
Web browser interface Yes
Supported browsers
  • Internet Explorer 10+
  • Firefox
  • Chrome
  • Safari 9+
Application to install No
Designed for use on mobile devices Yes
Differences between the mobile and desktop service Our website is responsive by design so it can be accessed from most mobile devices.
Accessibility standards None or don’t know
Description of accessibility Users can
- upload and download documents
- create folders, e-forms, workflows, contract templates
- trigger e-signing transactions
- monitor progress of transactions, cancel them, send reminders
Accessibility testing None so far.
What users can and can't do using the API API allows third parties to:
- create folders
- upload / download documents
- trigger e-signature transactions
API documentation Yes
API documentation formats HTML
API sandbox or test environment Yes
Customisation available Yes
Description of customisation Users can customise:
- content, look and feel of emails that are involved in e-signature processes
- branding visible to third parties
- create their own e-forms, workflows and document templates


Independence of resources We are building a load balancing capability to accommodate user growth.


Service usage metrics Yes
Metrics types We provide usage metrics for E-forms, workflows and e-signatures. Users can see which documents have been signed, which documents still need to be signed. Similarly for e-forms and workflows.
Reporting types Real-time dashboards


Supplier type Not a reseller

Staff security

Staff security
Staff security clearance Staff screening not performed
Government security clearance Up to Developed Vetting (DV)

Asset protection

Asset protection
Knowledge of data storage and processing locations Yes
Data storage and processing locations European Economic Area (EEA)
User control over data storage and processing locations Yes
Datacentre security standards Managed by a third party
Penetration testing frequency At least once a year
Penetration testing approach In-house
Protecting data at rest Encryption of all physical media
Data sanitisation process Yes
Data sanitisation type Deleted data can’t be directly accessed
Equipment disposal approach In-house destruction process

Data importing and exporting

Data importing and exporting
Data export approach For e-forms: CSV files
For files: export to Dropbox through an API integration
Data export formats CSV
Data import formats CSV

Data-in-transit protection

Data-in-transit protection
Data protection between buyer and supplier networks
  • TLS (version 1.2 or above)
  • Legacy SSL and TLS (under version 1.2)
Data protection within supplier network TLS (version 1.2 or above)

Availability and resilience

Availability and resilience
Guaranteed availability We use AWS data centre in Dublin which provides availability that is high enough for all our clients.
Approach to resilience Available on request.
Outage reporting Email alerts

Identity and authentication

Identity and authentication
User authentication needed Yes
User authentication
  • 2-factor authentication
  • Public key authentication (including by TLS client certificate)
  • Username or password
Access restrictions in management interfaces and support channels Support channels are using a dedicated system (LiveChat) that has no connection to our servers.
Management interfaces are visible only to key personnel.
Access restriction testing frequency At least once a year
Management access authentication
  • Public key authentication (including by TLS client certificate)
  • Username or password

Audit information for users

Audit information for users
Access to user activity audit information Users have access to real-time audit information
How long user audit data is stored for User-defined
Access to supplier activity audit information Users contact the support team to get audit information
How long supplier audit data is stored for At least 12 months
How long system logs are stored for User-defined

Standards and certifications

Standards and certifications
ISO/IEC 27001 certification No
ISO 28000:2007 certification No
CSA STAR certification No
PCI certification No
Other security accreditations No

Security governance

Security governance
Named board-level person responsible for service security Yes
Security governance accreditation No
Security governance approach We have an internal process that describes our security governance system.
Details are available upon request.
Information security policies and processes We use encrypted email to transfer sensitive information.
Other details are available upon request.

Operational security

Operational security
Configuration and change management standard Supplier-defined controls
Configuration and change management approach Each change to code is peer reviewed and scanned for security vulnerabilities before being released. We run sandbox and live regression tests before and after each release.
Vulnerability management type Undisclosed
Vulnerability management approach We have a real time monitoring system for potential online threats.
Protective monitoring type Undisclosed
Protective monitoring approach How you identify potential compromises
- we have an internal team that assesses the severity of each security alert
how you respond when you find a potential compromise
- critical vulnerabilities are patched immediately
- less critical issues are logged and patched on first come first served basis
how quickly you respond to incidents
- we attend to critical issues immediately
Incident management type Undisclosed
Incident management approach Whether you have pre-defined processes for common events
- we run regression test for common events before and after each code release
how users report incidents
- LiveChat / email
how you provide incident reports
- we send emails to individuals after fixing their reported issues

Secure development

Secure development
Approach to secure software development best practice Supplier-defined process

Public sector networks

Public sector networks
Connection to public sector networks No


Price £15 to £45 per licence per month
Discount for educational organisations Yes
Free trial available Yes
Description of free trial We offer 14-day-trials. This includes all our functionality that is not charged per transaction (such as ID-checks, SMS verification, encryption key release).
Link to free trial


Pricing document View uploaded document
Service definition document View uploaded document
Terms and conditions document View uploaded document
Return to top ↑