DocuSign · DocuSign Privacy Statement

Dual Role: Data Controller and Data Processor

Medium severity
Share 𝕏 Share in Share

Why it matters

If you sign a document sent by a company using DocuSign, that company — not DocuSign — is primarily responsible for how your data is used, which affects where you direct privacy complaints.

Consumer impact

DocuSign collects a broad range of personal data including your identity, contact details, device information, and behavioral data from document interactions, and shares this with service providers and advertising partners. Users in California, the EU, and UK have enhanced rights including the right to delete, access, correct, and port their data, as well as the right to opt out of certain data sales or sharing. You can submit a data rights request via DocuSign's privacy portal at https://www.docusign.com/privacy.

Applicable agencies

  • FTC
    The FTC has jurisdiction over deceptive or unfair practices related to data controller/processor accountability in consumer-facing services.
    File a complaint →

Provision details

Document information
Document
DocuSign Privacy Statement
Entity
DocuSign
Document last updated
March 24, 2026
Tracking information
First tracked
March 20, 2026
Last verified
March 20, 2026
Record ID
CA-P-001053
Document ID
CA-D-00198
Evidence Provenance
Source URL
https://www.docusign.com/company/privacy-policy
Wayback Machine
View archived versions →
SHA-256
fa237cd26dd39fb681a04c81ee495ed2c1828ea7d4d6e7935ee1004d94aea5d7
Verified
✓ Snapshot stored   ✓ Change verified
How to Cite
ConductAtlas Policy Archive
Entity: DocuSign | Document: DocuSign Privacy Statement | Record: CA-P-001053
Captured: 2026-03-20 05:54:25 UTC | SHA-256: fa237cd26dd39fb6…
URL: https://conductatlas.com/platform/docusign/docusign-privacy-statement/dual-role-data-controller-and-data-processor/
Accessed: April 4, 2026
Classification
Severity
Medium
Categories
Data usage

Other provisions in this document