Legal Compliance

AdaptDoc meets the legal requirements for electronic signatures under the ESIGN Act, UETA, and eIDAS.

Federal ESIGN Act (15 U.S.C. § 7001)

The Electronic Signatures in Global and National Commerce Act establishes that electronic signatures are legally valid for commerce. AdaptDoc satisfies all four statutory requirements:

1. Intent to sign

Signers affirmatively click "Sign" after reviewing the document. No passive consent. Each signature action requires deliberate interaction.

2. Consent to do business electronically

Before signing, signers are presented with a clear disclosure that they are signing electronically and consent to conduct the transaction digitally.

3. Association of signature with the record

Each signature is cryptographically bound to the specific document via SHA-256 integrity hash. The signing certificate records who signed what, when, and how.

4. Record retention

Signed documents are stored in their original form, accessible to all parties. Configurable retention policies ensure compliance with industry-specific requirements.

Uniform Electronic Transactions Act

UETA has been adopted by 49 states and the District of Columbia, providing a consistent legal framework for electronic transactions at the state level. AdaptDoc meets UETA requirements through the same mechanisms as ESIGN — intent to sign, consent, signature-record association, and retention.

Note: New York uses its own Electronic Signatures and Records Act (ESRA) rather than UETA, but the core principles are the same. Illinois uses its own Electronic Commerce Security Act (ECSA).

eIDAS Regulation (EU No 910/2014)

AdaptDoc provides advanced electronic signaturesas defined by eIDAS. Advanced electronic signatures are uniquely linked to the signatory, capable of identifying the signatory, created using data under the signatory's sole control, and linked to the signed data in a way that any subsequent change is detectable.

Note: Qualified electronic signatures (QES) require EU-certified hardware tokens and are not provided by AdaptDoc. Advanced electronic signatures are legally valid for most business transactions in the EU.

Security Architecture

SHA-256 Integrity Hashing

Every signed document is hashed. If even one byte changes, the hash changes, proving tampering.

Signing Certificates

Every completed document generates a standalone signing certificate with full audit trail.

QR Code Verification

Any signed document can be verified by scanning the QR code or visiting the verification page.

Complete Audit Trail

Every action is logged: who sent what, when it was opened, when it was signed, from what IP address.

Zero AI Processing

Document contents are never processed by AI, third-party services, or external APIs. All field detection uses local heuristics.

Encryption

Documents are encrypted at rest (AES-256 via Neon/PostgreSQL) and in transit (TLS 1.3).

Industry Compliance

HIPAA

Healthcare organizations can use AdaptDoc with a BAA. Document retention policies can be configured to meet HIPAA's 6-year requirement.

SOX

Audit trails and retention policies support Sarbanes-Oxley record-keeping requirements.

GDPR

Retention policies with automatic deletion support GDPR's data minimization principle. No document content is shared with third parties.

Real Estate

Meets ESIGN/UETA requirements for real estate transactions. Note: some jurisdictions still require wet signatures for deeds.

Document Verification

Verify any AdaptDoc-signed document

Every signed document includes a QR code and verification code. Enter it below to verify authenticity.

Go to Verification Page

Frequently Asked Questions

Yes. Under the ESIGN Act (federal) and UETA (adopted by 49 states + DC), electronic signatures have the same legal standing as handwritten signatures, provided the signer intended to sign, consented to do business electronically, and the signature is properly associated with the record.

Certain categories are excluded: wills, codicils, and testamentary trusts; family law matters (adoption, divorce) in some states; court orders and notices; cancellation of utility services; UCC filings in some jurisdictions. Always consult legal counsel for jurisdiction-specific requirements.

Yes. AdaptDoc maintains a complete chain of evidence: the original document, SHA-256 integrity hash, signing certificate with timestamps and IP addresses, complete audit trail, and QR-verifiable signing certificate. This evidence chain meets the requirements for admissibility under the Federal Rules of Evidence.

AdaptDoc follows the Open Trust Protocol (OTP) — a public, transparent security audit framework created by Adaptensor Inc. as an alternative to closed SOC 2 reports. The OTP maps every SOC 2 Trust Service Criterion to concrete, testable controls and publishes all scores, evidence, and gaps publicly. No NDA, no paywall — just proof. Learn more at opentrust.adaptensor.com.

Have compliance-specific questions?

Our team can provide detailed compliance documentation tailored to your industry and jurisdiction.

Contact Sales