Skip to main content

Privacy Policy

Last updated: March 20, 2026

1. What We Collect

SignForge collects only the information you voluntarily enter into the signature editor:

  • Name, job title, company name
  • Email address, phone number, website URL
  • Social media profile links
  • Uploaded images (headshot, logo, banner)
  • Style preferences (colors, fonts, layout)

When you purchase a signature, Stripe (our payment processor) collects your payment information. We receive and store your email address from Stripe to send you your edit link and to enable edit link recovery if you lose it. We never see or store your credit card number.

2. How We Use Your Data

  • To generate and render your email signature
  • To send you your permanent edit link after purchase
  • To recover your edit link if you lose it
  • To notify team admins when members set up their signatures, and to notify members if removed from a team
  • To process your one-time payment via Stripe
  • To improve SignForge through anonymous analytics (Google Analytics, Vercel Analytics)

We do not sell, rent, or share your personal data with third parties for marketing purposes.

3. Data Storage

Your signature data is stored securely in Supabase (hosted on AWS). Uploaded images are stored in Supabase Storage. All data is transmitted over HTTPS.

Your signature persists indefinitely so you can return to edit it anytime using your permanent edit link. We do not delete paid signatures unless you request it.

4. Third-Party Services

  • Stripe — payment processing. Subject to Stripe's Privacy Policy.
  • Supabase — database and file storage.
  • Vercel — hosting and analytics.
  • Google Analytics — anonymous usage analytics. No personally identifiable information is sent.
  • Resend — transactional email delivery for your edit link.

5. Cookies

SignForge uses minimal cookies for analytics (Google Analytics) and performance monitoring (Vercel). We do not use cookies for advertising or tracking across other websites.

6. Your Rights

You have the right to:

  • Access the personal data we hold about you (via your edit link)
  • Request deletion of your signature and associated data
  • Request a copy of your data in a portable format

To exercise these rights, contact us at privacy@signforge.net.

7. Data Security

We implement industry-standard security measures including HTTPS encryption, Row Level Security on our database, rate limiting on all API endpoints, input validation, and Content Security Policy headers. Uploaded files are validated for type and size.

8. Children

SignForge is not intended for use by children under 13. We do not knowingly collect data from children.

9. Changes

We may update this policy from time to time. Changes will be posted on this page with an updated date. Continued use of SignForge after changes constitutes acceptance.

10. Contact

Questions about this policy? Email privacy@signforge.net.