I’ve been given the task of finding an e signature solution for our practice for confidential documents. We do use Docusoft which has its own portal that we trialled for a time, but the customers found the concept unworkable supposedly. This was before I joined but I’m being told that having to sign in was a major gripe for them. We also use IRIS and I’ve quickly looked at IRIS Openspace but again, id and pw needed client side.
So, I have been looking at SignRequest and HelloSign amongst other solutions. My main concern though is the security, GDPR etc. If the client just receives a link for the document online then that surely can't comply with GDPR, can it? Also, SignRequest send you a copy of the signed document back, which is easier, but again is it compliant with GDPR? I’m starting to think that to be compliant we will need something which uses an id and pw for the client……or am I being overly cautious?
Has anybody else thought about the security implications of e signatures and what conclusions did you come to?