Recipient Authentication
DocuSign offers three ways to make sure your intended recipients sign your documents. Each level of identity verification offers more security. You can choose one or more authentication measure for each transaction.
Level 1: Email
DocuSign emails an invitation to sign your document to the email addresses you specify. This default method of authentication is adequate in many situations because only your intended recipients should have access to their email inboxes.Level 2: Access Code
You create a confidential access code and deliver it to the recipient ‘out of band’ (e.g., by phone). Without the correct access code, recipients will be unable to view the document.Level 3: Identity Verification with ID Check
For the ultimate assurance, use ID Check. A third-party identity verification service will generate questions from your recipient’s personal history. If the questions are answered incorrectly, the recipient will be unable to proceed.
Asserted Authentication
You may also use asserted authentication with API/Embedded
applications. For example, customers logged in to your secure website
would not have to go through another authentication process in order
to sign a document with embedded DocuSign service.
Audit Trail
Every event in the life of a DocuSign document is logged,
dated, and time-stamped. A complete audit trail is attached to every
signed digital envelope and includes the IP address of each computer
involved in the transaction. This audit trail provides court-admissible
evidence should there ever be any question as to who signed what when.
