Legally binding e-signatures with tamper-evident PDFs, a hash-chained audit trail, and data kept in Canada. PIPEDA-ready for teams and developers — from a simple console or a REST API.
Start free →Documents and signer data are stored in Canada, which simplifies privacy reviews for Canadian businesses, public-sector buyers, and regulated industries.
Consent capture, retention controls, and an append-only audit trail map directly to PIPEDA principles — without bolting compliance on after the fact.
Every completed document is sealed with a PKCS#7 digital signature and backed by a hash-chained event log, so the executed record stays verifiable years later.
Send documents from a simple web console, or embed signing into your own product with a REST API. Same legal-grade engine behind both.
Upload any PDF and place signature, initial, date, and text fields for each signer — no document templating required up front.
Sequential or parallel routing across multiple signers, with reminders and per-signer status tracking.
A SHA-256 hash is captured on upload; the finished document is sealed so any byte-level change after signing is detectable in any PDF reader.
A certificate page records every event — viewed, consented, signed — with timestamps and IP addresses, appended to the sealed PDF.
See the full security architecture · pricing · developer docs.
Yes. Electronic signatures are recognized in Canada under PIPEDA (the federal Personal Information Protection and Electronic Documents Act) and provincial electronic commerce statutes such as Ontario’s Electronic Commerce Act. To be defensible, the software should capture the signer’s intent and consent, keep a reliable record of the signing events, and protect the integrity of the signed document — all of which GetSigned does. This page is general information, not legal advice; confirm requirements for your specific documents with a qualified lawyer.
Signed documents and signer data are stored in Canada. Keeping data in-country simplifies privacy assessments for Canadian organizations and many public-sector procurement requirements. See our data residency page for details.
No. Non-technical teams can upload a PDF, place fields, and send it for signature entirely from the web console. Developers can additionally use the REST API to embed signing into their own application.
When all signers finish, GetSigned flattens the fields into the PDF, appends an audit certificate page, and applies a service-level PKCS#7 digital signature over the whole file. Any modification after that point invalidates the signature, which standard PDF readers will flag.
There is a free tier to start, with paid plans for higher volume, custom branding, and team seats. See the pricing page for current plans.
GetSigned targets PIPEDA-defensible electronic signatures and US ESIGN/UETA. It does not issue qualified/eIDAS signatures. If your industry requires a higher assurance level or specific identity verification, confirm those requirements before relying on the service.
Related: E-signature API Canada · Are e-signatures legally binding in Canada? · Canadian data residency · DocuSign alternative (Canada) · Security
Free to start. Data kept in Canada, sealed and audit-logged on every document.
Get started free →