Add blockchain security for documents & workflows.


ZorroSign’s API services let you digitally sign documents, request signatures, automate your forms and data, and much more—all from your existing enterprise resource planning (ERP) software.


Development teams can readily integrate our digital signature REST APIs into any app, website, mobile app, or embedded system that can make HTTPS requests. With ZorroSign API, your organization can quickly extend and enhance your document signing processes and easily implement document security and authentication capability.


ZorroSign exposes our secure digital signature functionalities via four key APIs: User Service, Workflow Service, Subscription Service, and Token Service. We also provide notification services to handle all the alert service routines.


These APIs allow you to quickly integrate with the ZorroSign digital business platform (DBP) to

  • Communicate subscription data
  • Create and retrieve workflow documents
  • Create custom workflows—including document processing, self-signing, labeling, etc.
  • Leverage a workflow dashboard
  • Generate and read 4n6 (“forensics”) tokens
  • Download blockchain based certificate and audit trail


Why ZorroSign?


ZorroSign provides the ultimate security in digital signatures. Our platform was built on Hyperledger Fabric—the world’s most trusted blockchain—ensuring that all aspects of all transactions are captured on a private permissions-based blockchain with an immutable, non-reputable record.


As governments, organizations, businesses, and individuals move to paperless environments, the promise of distributed ledger technologies offers an appealing new approach to digital connections and security. “We are proud to deliver a mature blockchain solution for digital signatures that is cost-effective and more secure than any encrypted e-signature technology that relies upon public-key infrastructure for security credentials,” says ZorroSign co-founder and CEO, Shamsh Hadi. “ZorroSign’s platform efficiently leverages blockchain to protect online identities and documents such as business agreements, government files, healthcare records, and other legal evidence stored in digital formats.”


Digital signatures can speed a return on investment (ROI) by accelerating agreements, contracts, and transactions and facilitating the secure exchange of digital documents. A digital business platform (DBP) that readily complies with international privacy and security standards and regulations is critical in today’s zero-trust world across companies, organizations, partners and borders.


Low Pricing for Integration


ZorroSign’s API pricing falls into four tiers, determined by how many document sets your organization might use per year. For example, a Bronze license supports up to 500 document sets per year, while Gold and Platinum licenses support many more and our Diamond API license can be customized to the scale you require. All ZorroSign API packages include unlimited templates and workflows, unlimited fields, mobile, authentication, embedded signing & sending, personalized branding, real-time reporting, bulk send, and intelligent forms. Visit our Pricing page for details.


Learn More


We offer multiple paths to learning more about integrating ZorroSign’s platform:

  1. Review our API documentation where we provide guidance and code samples for user services including multifactor authentication (MFA), user management, and passwordless login, plus subscription services, workflow services, token services, notifications, and more!
  2. Request a copy of our API QuickStart Guide — a short developer manual showing you how you can integrate our REST APIs, which are more secure with light data payloads into any app, website, or embedded system using HTTPS requests.

Or contact us today to discuss how you can quickly bring ZorroSign’s secure blockchain-based digital signatures and 4n6 token into your enterprise software!

Is your organization effectively protecting its information?


Happy Data Privacy Day! Or perhaps a more appropriate greeting: Is your organization employing information privacy best practices today . . . and everyday?


Data Privacy Day focuses on raising awareness among businesses, consumers, and families on the importance of protecting the privacy of their personal information online.


At ZorroSign, our corporate mission is to leverage blockchain technology to deliver a lifetime of security and privacy for your digital signatures and documents that is easy-to-use and legally compliant. Data privacy is one of our core values as we strive to provide the most trusted and secure paperless experience.


A Short History of Data Privacy in the United States


“In recent years, information privacy has emerged as one of the central issues of our times,” notes Daniel J. Solove in a George Washington University Law School publication on information privacy laws. “Today, we have hundreds of laws pertaining to privacy: the common law torts, criminal law, evidentiary privileges, constitutional law, at least twenty federal statutes, and numerous statutes in each of the fifty states.”


Solove traces privacy protections from early American census and government records, through post mail and telegraph communications, to personal papers and information. Then “the development of the computer in 1946 revolutionized information collection. Throughout the second half of the twentieth century, the computer revolutionized the way records and data were collected, disseminated, and used,” writes Solove and “the increasing use of computers in the 1960s raised a considerable public concern about privacy.”


Congress passed the Privacy Act of 1974 to regulate the “collection and use of records by federal agencies, and affords individuals right to access and correct their personal information,” then passed the Electronic Communications Privacy Act (ECPA) of 1986 which “protects wire, oral, and electronic communications while those communications are being made, are in transit, and when they are stored on computers. The Act applies to email, telephone conversations, and data stored electronically.”


The 1990’s saw the rise of the Internet which changed the game for data collection, storage, and dissemination. Initially, the U.S. passed the Children’s Online Privacy Protection Act (COPPA) of 1998—which “prohibits unfair or deceptive acts or practices in connection with the collection, use, and/or disclosure of personal information from and about children on the Internet”—then the Gramm-Leach-Bliley Act (GLBA) of 1999 defining personal identifying information privacy for financial institutions which expanded privacy policies across many industries.


The September 11, 2001 attacks on the United States initially brought challenges to data privacy as the USA PATRIOT Act of 2001 granted federal agencies greater power to collect personal information and expanded the investigative powers of law enforcement based on the Foreign Intelligence Surveillance Act (FISA).


At this time, “the U.S. doesn’t (yet) have a federal-level general consumer data privacy law, let alone a data security law,” notes Varonis, a cybersecurity company.


But individual states are taking up the cause for data privacy and—often emulating policies and practices set by the European Union’s General Data Protection Regulation (GDPR)—defining stronger privacy protections. For example, the California Consumer Privacy Act (CCPA) of 2018 (and copycat laws in other states such as Hawaii, Maryland, Massachusetts, New York, and North Dakota) gives “consumers more control over the personal information that businesses collect about them, including: The right to know about the personal information a business collects about them and how it is used and shared; the right to delete personal information collected from them (with some exceptions); the right to opt-out of the sale of their personal information;  and the right to non-discrimination for exercising their CCPA rights.”


Information Privacy Today


2020 was not a great year for world health or for data privacy. The news was filled with stories of data breaches, and the Great Supply Chain Hack of 2020 may haunt government data systems for years—“This is looking like it’s the worst hacking case in the history of America,” says one U.S. official. “They got into everything.”


In this climate of fear and risk, ZorroSign’s CEO and co-founder, Shamsh Hadi, has built a company culture where “trust is everything.” Private businesses, government organizations, educational institutions, legal departments, real estate companies, and many other industries trust ZorroSign technologies to protect their data and secure their information privacy.


Our private, permissioned blockchain platform is compliant with dozens of international privacy and security standards, including United States eSign Act, Uniform Electronic Transactions Act (UETA), Health Insurance Portability and Accountability Act (HIPAA), Americans with Disabilities Act (ADA) and Web Content Accessibility Guidelines (WCAG 2.1), the Federal Canadian Personal Information Protection and Electronic Documents Act (PIPEDA), Canadian Provincial Uniform Electronic Commerce Act (UECA), the Information Technology Act 2000 (IT Act of India), and GDPR in Europe, and many more.


Request a copy of our ZorroSign Security Brief for details on our unique blockchain architecture, document storage and protection, and platform security measures or contact us today to learn how ZorroSign’s digital business platform can protect your data privacy!

Blockchain technology can better secure supply chains and digital transactions.


December 2020 brought a flurry of news stories around the massive cyber attack on the U.S. government. Called the Solar Winds Orion Supply Chain Compromise, or the Great Supply Chain Hack, this evolving story reflects the risks even sophisticated networks—like those run by the federal government—face when dealing with attackers deploying anti-forensic techniques, user impersonation, privilege escalation and persistence, and MITRE ATT&CK® techniques.


The U.S. Cybersecurity and Infrastructure Security Agency (CISA) issued an alert on December 17th on the advanced persistent threat (APT) to government agencies, critical infrastructure entities, and private sector organizations, saying the attack began in at least March 2020 and the attacker “demonstrated sophistication and complex trade craft in these intrusions. CISA expects that removing the threat actor from compromised environments will be highly complex and challenging.”


A December 21st NPR article says the “list of affected U.S. government entities reportedly includes the Commerce Department, the Department of Homeland Security, the Pentagon, the Treasury Department, the U.S. Postal Service and the National Institutes of Health.” Plus, the Department of Energy acknowledged its computer systems had been compromised, though not the critical National Nuclear Security Administration systems.


“Hackers exploited the way software companies distribute updates, adding malware to the legitimate package,” note NPR reporters Bill Chappell, Greg Myre, and Laurel Wamsley. “Security analysts said the malicious code gave hackers a ‘backdoor’—a foothold in their targets’ computer networks—which they then used to gain elevated credentials. Solar Winds traced the ‘supply chain’ attack to updates for its Orion network products between March and June.”


“This is looking like it’s the worst hacking case in the history of America,” says one U.S. official, speaking on condition of anonymity. “They got into everything.”


In this environment of fear and reaction, the promise of distributed ledger technologies offers an appealing new approach to digital security. For example, blockchains have quickly been embraced as a solution for improving supply-chain security for data, communications, and logistics.


The emerging technology of blockchain “adds layer of security to movement of critical components,” claims SAIC, an American government contractor.  “We see blockchain as a transformative technology to protect elements of supply chains.”


“Blockchain can greatly improve supply chains by enabling faster and more cost-efficient delivery of products, enhancing products’ traceability, improving coordination between partners, and aiding access to financing,” says Vishal Gaur and Abhinav Gaiha in a Harvard Business Review article. “There is considerable room to improve supply chains in terms of end-to-end traceability, speed of product delivery, coordination, and financing. Blockchain can be a powerful tool for addressing those deficiencies.”


“It’s about time we start talking about the advanced methods of privacy and security we can ensure on blockchain,” adds Shamsh Hadi, CEO and co-founder of ZorroSign, Inc. “How many times do we need hacks to happen before we finally ask the right questions?”


For governments organizations and companies that require secure digital transactions, ZorroSign’s digital signature and document management platform can decrease costs, reduce errors, and increase productivity. Unlike other electronic signature solutions, ZorroSign’s platform is built on a private, permissioned Hyperledger Fabric blockchain architecture to secure digital assets and deliver security certificates with robust audit trails and lifetime document escrow.


“Ultimately, blockchain technology helps make digital transactions more secure, faster and less expensive,” says Hadi.


Learn how blockchain can more securely manage your organization’s digital signatures and documents—contact ZorroSign today.

ZorroSign provides the ultimate security in digital signatures, built entirely on a blockchain architecture that protects identities and data—uniquely authenticating users, encrypting communications, and securing digital data immutably through its lifetime.


“We are proud to deliver a mature blockchain solution for digital signatures that is cost-effective and more secure than any encrypted e-signature technology that relies upon public-key infrastructure for security credentials,” says ZorroSign co-founder and CEO, Shamsh Hadi. “ZorroSign’s platform efficiently leverages blockchain to protect online identities and documents such as business agreements, government files, healthcare records, and other legal evidence stored in digital formats.”


For governments, companies, and individuals that desire to securely transform paper-based workflows, ZorroSign’s digital signature and document management platform can decrease costs, reduce errors, and increase productivity. Unlike other electronic signature solutions, ZorroSign’s platform is built on privately-permissioned Hyperledger Fabric to secure digital assets and deliver security certificates with robust audit trails and lifetime document escrow.


“ZorroSign’s solution is uniquely scalable and secure,” adds Arra Yerganian, strategic advisor and acting chief growth officer for ZorroSign. “Whereas other companies might struggle with the costs and complexities of blockchain architecture, ZorroSign is that rare, viable enterprise using blockchain as our core technology to meet those challenges with a fast system able to grow as our customers require.”


Blockchain’s adoption has begun to accelerate the past few years. “JPMorgan says it has used it commercially for the first time to send payments,” writes John Detrixhe, senior reporter at Quartz. “Executives at the biggest US bank by assets say those systems can grow in scale.”


We invite you to let us prove how blockchain can more securely, more cost-effectively deliver post-execution fraud detection, verification and authentication of legally binding electronic signatures, and securing digital documents.  Visit or contact us today!

“Modern digital technology that supports information sharing,

communication, collaboration, and learning are

central to daily living and to the function of government.”

~Teri Takai, Executive Director at the Center for Digital Government


Local governments in the United States such as counties, municipalities, and school districts serve the public with codified processes for business, education, health and safety, law enforcement, property development, transportation, utilities, and more. The sheer volume of legal agreements, licenses, permits, records, and reports are daunting to manage, and digital solutions are becoming more and more necessary to effectively administrate public services.


Further, local governments know the value of operating more efficiently both in cost-savings (by reducing administrative costs in paper, printing, reproduction, storage, etc.) and in resource allocation (by being able to serve more constituents with the same resources). Technology solutions that speed clerical work, reduce errors, and lower administrative costs can readily generate a return on investment for the public.


As local governments strive to move paper administration to digital environments, privacy and security become top priorities. Beyond simply digitizing forms, processes, and records, these government organizations must:


  • Validate end users as constituents engage digital public services
  • Authenticate digital data as it is moved between users and offices
  • Secure digital documents for storage, archiving, and retrieval—ensuring immutability with non-repudiation audit trails and post-execution fraud/tamper protection


Digital Benefits for Local Governments

The COVID-19 pandemic has accelerated local governments’ need to move to digital services.


“When offices were forced to close, many local governments were unable
to conduct business without physical access to legacy systems,
holding up everything from building permits to license renewals
and access to land records.”
~Doug Harvey, VMware Head of U.S. State & Local Governments & Education


As local governments add remote administration capabilities, the promise of digital transformation is tremendous. Large municipalities to the smallest administrative districts can leverage digital signature and document management software to protect the chain of custody (CoC) for documents and securely review, approve, archive, and retrieve:


  • Across-agency or inter-department agreements
  • Architecture and engineering drawings/schematics for construction permits
  • Benefits administration programs and processes
  • Certificates of occupancy
  • Court decrees and orders
  • Facilities management forms
  • Housing programs and building permitting management
  • Human resources processes (e.g., employment agreements, expense forms, payroll sign-off sheets, etc.)
  • Licenses for alcohol, auctions, business, construction, farming, plumbing, restaurants, retail, valet services, etc.
  • Logistics and procurement processes
  • Permits for building, carnivals and fairs, exhibit and trade shows, explosives, fireworks, gas, hazardous waste, hospitals, lumber, medical facilities, nursing homes, public assemblies, waste handling, etc.
  • Public health programs administration
  • Purchase agreements for public assets, products, or services


ZorroSign blockchain digital signature, a secure, encrypted platform provides a means for local governments to digitize records—eliminating duplication errors, streamlining clerical work, decreasing costs and time spent, and ensuring public record immutability for legal enforceability and transparency.

We are thrilled to launch ZorroSign’s new global headquarters in Phoenix, Arizona!


The Phoenix-based team is already growing and we are starting with offices in Grand Canyon University’s Innovation Center—home to Canyon Angels; Cerberus Sentinel; the Cybersecurity Center of Excellence; Digitile; GCU’s Innovation, Development and Entrepreneurship Association (IDEA) Club; HomeKey; Journeyage; Youngblood Works, and many more innovative startups and technology companies.


And local media have been warm in welcoming ZorroSign into the Greater Phoenix economic and academic environment:


ZorroSign’s primary focus is the security and privacy of our customers’ data. We deliver such privacy and security with our digital signature and advanced digital transaction management (DTM) platform.




Because unlike any other digital signature or DTM solution, ZorroSign was built from the ground-up on private permissioned blockchain, which is Hyperledger Fabric.


What is Hyperledger Fabric?


“Hyperledger Fabric is a modular blockchain framework that acts as a foundation for developing blockchain-based products, solutions, and applications using plug-and-play components that are aimed for use within private enterprises,” notes Will Kenton in Investopedia. “Because Hyperledger Fabric is private and requires permission to access, businesses can segregate information (like prices), plus transactions can be sped up because the number of nodes on the network is reduced.”


Hyperledger emerged as an open-source collaborative effort, hosted by The Linux Foundation, to advance cross-industry blockchain technologies and improve trust, transparency and accountability. Hyperledger Fabric distributed ledger technologies (DTL) are:


  • The framework for the IBM Blockchain Platform
  • Used by Honeywell Aerospace to create an Amazon-type marketplace for used aircraft parts
  • Used by Walmart to create a food traceability system—decentralizing its food supply ecosystem to quickly find the source when an outbreak of a food-borne disease happens
  • Deployed by Change Healthcare to demonstrate the feasibility of using Hyperledger Fabric to process hundreds of healthcare transactions per second
  • The technology architecture upon which ZorroSign’s advanced DTM platform was built


How does Hyperledger Fabric Ensure Privacy & Security?


Hyperledger Fabric blockchains are permissions-based and requires all users to authenticate themselves before making requests to read or write into the distributed ledger (i.e., the “blocks” on the “chain”) or taking any action that adds to the blocks on the distributed ledger.


As a private blockchain, ZorroSign can ensure privacy is always maintained as only approved nodes (endpoint users) can write to ZorroSign’s blockchain. This is opposed to public blockchains—like Bitcoin and Ethereum—where anyone can be an endpoint and write to the blocks.


As a result, ZorroSign’s architecture has even tighter privacy and security measures than other blockchains.


Further, if users make a change to the information recorded in one particular block of a blockchain, they cannot rewrite that block—instead the change is stored or recorded in a new block along with the date and time of the change, permanently capturing the chronological changes to the document.


ZorroSign’s patent-pending 4n6 (“forensics”) token is a kind of digital seal that captures the complete audit trail and the document’s DNA. The token is encrypted and contains information on all the details about the transaction including time stamps, user authentication, document, and attachments. The 4n6 token securely reads the information from the secure ZorroSign servers so it can be accessed by the document originator or third parties (with permission from the originator) when requested. The 4n6 token allows ZorroSign to manage permissions as to who gets to see what level of information about the transaction and the document.


Finally, the 4n6 token stores the ZorroSign security encryption certificates, which—unlike other digital security certificates—never expire.


Benefits of Private, Permissioned Hyperledger Fabric Architecture


The key benefits of ZorroSign’s blockchain architecture and 4n6 token technology thus include:


  • Immutability—A chronological record (with date and time stamps) of all transactions in multiple copies on the ledger are maintained to avoid any doubt or ambiguity. This chronological chain provides a robust chain of custody and audit trail capabilities. Blocks cannot be rewritten, edited, or deleted—only added to the ledge—and so ensure document immutability.
  • Privacy—Permissions-based private blockchain security and privacy of the users’ information (i.e. PII, PHI, etc.) by only allowing permissioned individuals to have access to the transaction.
  • Fraud Prevention—ZorroSign’s proprietary 4n6 token can readily detect any document fraud, document tampering, or signature forgery (as a tamper seal that runs on the blockchain).
  • Lifetime Escrow—While competitors often use third-party digital security certificates that expire every two years, ZorroSign issues its own certificates that never expire for lifetime document escrow.

ZorroSign’s blockchain architecture, built on Hyperledger Fabric, ensures that all aspects of all transactions are recorded on a private permissions-based blockchain—creating an immutable, non-reputable record of the transaction and the executed document. And delivering unmatched privacy and security the organizations using our digital signatures and advanced DTM platform.

ZorroSign Software Architect, Ruwan Dissanayake, recently answered some questions on his career path, goals, and insights on business and technology.


At ZorroSign, Ruwan is responsible for providing technical leadership to our development team; producing architectural blueprints for development; evaluating and assessing tools, technologies, and processes for improved security and functionality; ensuring software security; troubleshooting issues in code and design; creating product specifications and design documents, and meeting aggressive schedules for product development, quality assurance, and launch.


Question: How did you get to where you are professionally?

Answer: I have a Bachelor of Science degree (with Honors) from the University of Ruhuna in Sri Lanka, and postgraduate diploma in Computer Science from the University of Colombo School of Computing. I am hard working and dedicated to software development, passionate about what technology can do for people and businesses, and believe the incredible value blockchain can bring to the global economy.


Question: What attributes do you look for when hiring developers and other technical staff?

Answer: Knowledge, skills, and the right attitude are all key in hiring developers. Their ability to stay focused is important—software development can take a toll on you as challenges and deadlines rush at you.


Question: Why did you choose to work for ZorroSign?

Answer: Before I joined ZorroSign, I worked for a few multinational companies. I was looking for a company that was doing something innovative and developing a technology which could disrupt the world in a good way with its product. ZorroSign develops technology for tomorrow and I found ZorroSign to be the right place for me. I like the friendly working environment and opportunities to create exciting solutions.


Question: What are you most passionate about regarding technology?

Answer: I like that technology is evolving and helping people live better lives and conserve our environment. Everyone is paying greater attention to the limited resources we have in the world, and how to protect them, technology can play a major role. ZorroSign’s ability to reduce paper, printing, hard copy storage, and even courier logistics makes a significant impact on our environment.


Question: Give me one word that describes you best.

Answer: Supportive. I work for my team to achieve our technical accomplishments together.


Question: What are your long-term professional goals?

Answer: To make ZorroSign the number one solution in digital transaction management, while contributing to a green technology (digital signatures on blockchain) that will help make a safer, better, brighter world for generations to follow.


Question: What area of technology do you think will have the most growth in the next five years?

Answer: There are so many technologies poised to grow, I could not pick just one! Artificial Intelligence and Machine Learning are sure to continue growing, as are big data and augmented analytics. The Internet of Things (IoT) is still booming, quantum computing is stepping onto the world stage, and blockchain has a chance to become widely adopted across many industries.


Question: Business is often an adventure, what is your favorite life adventure?

Answer: I managed to escape from a few motorbike accidents over the years. When I thought it was the end, somehow I survived! During white-water rafting the vessel I was in flipped over, causing me to turn cycles in the water. I didn’t know what to do, so I held my breath and waited until my life jacket push me up to the surface, I was thankful to be alive.


Question: How do you spend your time outside of work?

Answer: I spend my time with my family. I love nature, specifically rain forests. In my leisure time I go on safaris and trekking.


Question: What is one thing you want everyone reading this to know about you?

Answer: My life’s journey has not always been smooth—it has had a lot of ups and downs. I kept my faith, stayed responsible, stayed accountable, and I always take ownership of all situations.

In today’s digital world, data privacy and security are critical. At ZorroSign, we are proud to put privacy and security at the heart of everything we do—including how we’ve built our digital transaction management (DTM) platform. With our private, permissioned blockchain foundation, our commitment to security and privacy meets important regulations and standards upheld by countries around the world. Here are some quick examples…




In the United States, there have been many laws and regulations enacted around data privacy and digital security, including:


  • The Health Insurance Portability and Accountability Act of 1996 (HIPAA) set national standards for electronic health care transactions and codes, unique health identifiers, and security—ZorroSign DTM helps organizations meet HIPAA compliance.
  • The Digital Millennium Copyright Act (DMCA) of 1998 is an anti-piracy statute protecting digital rights management—ZorroSign’s digital signatures support DMCA.
  • In 1999, the Uniform Electronic Transactions Act (UETA) established the legal equivalence of electronic records and signatures, with paper documents and manually-signed (wet) signatures—ZorroSign digital signatures meet UETA compliance.
  • In 2000, the Electronic Signatures in Global and National Commerce Act (E-Sign Act) validated electronic records and signatures for commerce across states and countries—ZorroSign digital signatures fulfill ESIGN compliance.
  • The Sarbanes–Oxley Act of 2002 (SOX) set regulations for the financial practice and corporate governance of U.S. public company boards, management, and public accounting firms—ZorroSign DTM helps organizations fulfill SOX requirements.


In Canada, similar laws such as the Personal Information Protection and Electronic Documents Act (PIPEDA) defined how organizations can collect, use or disclose personal information; and the Uniform Electronic Commerce Act of 1999 (ULCC) regulated the provision and retention of electronic information, and the communication of electronic documents. Again, ZorroSign digital signatures meet both Canadian standards for privacy and security.




The European Union has enacted two major regulations for data privacy and security in the General Data Protection Regulation (GDPR) and Electronic Identification and Trust Services Regulation (eIDAS) of 2018. This elaborate set of rules and requirements are also met by ZorroSign’s digital signatures and DTM platform.




In the Middle East region there are two major laws that govern electronic signatures in the United Arab Emirates (UAE) and Saudi Arabia. ZorroSign meets the United Arab Emirates’ Federal Law No. 1 of 2006 regarding Electronic Transactions and E-Commerce granting electronic signatures legal force and effect. ZorroSign also meets the KSA laws in Saudi Arabia as governed by the Electronic Transactions Law, Royal Decree No. (M/8) 8 Rabi’ I- 1428H from 2007.




In 2000, India passed a sweeping Information Technology Act, with further amendments in 2008, providing legal recognition for transactions performed by electronic data interchange, eCommerce, and digital signatures, plus rules for electronic records and certifying authorities. Again, ZorroSign DTM meets the security and privacy requirements of India’s IT Act.




While ZorroSign’s platform ensures compliance with these (and other) regulations around the world, we separate ourselves from our competition by going even further to protect our customers’ data and privacy. ZorroSign’s patent-pending blockchain architecture uniquely ensures:


  • Immutability—maintaining a chronological record of transactions in multiple copies on a ledger to avoid doubt or ambiguity.
  • Legal Enforceability—ZorroSign uses patented and legally-binding electronic signature with real digital information versus competitors who simply superimpose a flat image of a signature on a document… legally distinguishing intent to sign a document vs actually signing a document.
  • Signature Attribution—signatures are protected and validated using ZorroSign’s private permissioned blockchain, plus high-level security provisions and multifactor authentication (including biometrics) to ensure signatory attribution.
  • Fraud Prevention—our proprietary 4n6 token detects document fraud, document tampering and signature forgery (as a tamper seal that runs on the blockchain).
  • Lifetime Escrow—while competitors often use third-party digital security certificates that expire every two years, ZorroSign issues its own certificates that never expire for lifetime document escrow.


We are proud to be the digital signature solution of choice for organizations around the world committed to privacy and security.

June 30, 2020, marks the 20th anniversary of the U.S. Electronic Signatures in Global and National Commerce Act (ESIGN Act)—a critical piece of legislation that ensures “a signature, contract, or other record relating to such [commercial] transaction may not be denied legal effect, validity, or enforceability solely because it is in electronic form.


In 2010, both Houses of Congress passed a resolution recognizing June 30th as National ESIGN Day.



The Uniform Electronic Transactions Act (UETA) of July 1999, and accompanying ESIGN Act enacted June 30, 2000, are U.S. federal laws ensuring the legal standing and validity of electronic records, signatures, and contracts.


The UETA established that electronic signatures and records should be accorded the same legal status as wet ink signature and paper records, and has been adopted by 47 U.S. states, as well as the District of Columbia and the U.S. Virgin Islands. (Illinois, New York, and Washington have not adopted the UETA, but have similar statutes validating electronic transactions). The UETA does not contain any requirement that consumers be provided with disclosures, though it does govern the attribution of electronic signatures. And UETA addresses when an electronic record has been sent and received.


The ESIGN Act, in contrast, defines essential requirements for electronic signatures and establishes a federal safety net to ensure that electronic contracts are legal for both interstate and global commerce. Together, the UETA and E-Sign Act have four major requirements for an electronic signature to be recognized as valid under U.S. law:

  1. Intent to Sign— meaning signatories must intend to sign, whether documents are paper executed with wet ink or electronically executed with digital signatures.
  2. Consent to Do Business Electronically – meaning the parties have consented to transact electronically, as proven by:
    1. Parties having received UETA Consumer Consent Disclosures,
    2. Parties have affirmatively agreed to use electronic records for the transaction,
    3. Parties have not withdrawn their consent.
  3. Association of Signature with the Record –meaning the electronic system (or platform) used to manage the digital transaction must keep an associated digital record that tracks the process by which the signature was created, so proving that records was executed with an electronic signature.
  4. Record Retention – meaning digital transactions require record keeping and retention of accurate reproductions of the documents and digital signatures that can be referenced by all parties . . . or other persons entitled to retain the records.


Finally, a key requirement of the ESIGN Act was to ensure that business and commerce between states would not be complicated by competing electronic signature statutes. As such, the June 2000 ESIGN Act established guidelines that could only be modified or limited by states in the case of adopting the UETA (or when similar procedures were provided, as with Illinois, New York, and Washington states).



Before the ESIGN Act, many businesses struggled with how to handle online transactions. Although companies were beginning to accept electronic signatures, it was unclear how those signatures might be upheld in court. The ESIGN Act established electronic signatures as having the same legal standing as wet ink signatures, such that a contract or record of transactions would not be denied legal effect or ruled unenforceable simply because it is in electronic form.


The ESIGN Act also supported U.S. companies in global commerce, effectively promoting electronic signatures for international business transactions whenever all parties can use their preferred technologies to authenticate and secure such digital transactions. Parties to international digital transactions gained the legal means to prove the legal effect, validity, and enforceability of their electronic signatures and agreements.



A key element of the ESIGN Act’s enduring value is the requirement that parties retain evidence of their contractual agreements to ensure the continued legitimacy of a contract and its terms.


“Trusted electronic signature software contains security measures to ensure the legitimacy of an agreement and prevent fraud,” notes Andreas Rivera in “For the best security, pick programs that allow for multiple forms of authentication to be used. Another common security measure is the implementation of a digital signature along with the electronic one.”


The ZorroSign platform was built ground-up on Hyperledger Fabric (a private-permissioned blockchain) for securing and storing electronic documents. ZorroSign’s Digital Transaction Management (DTM) solution leverages public-key infrastructure with AES 256-bit encryption hashing and logging each digital transaction via ZorroSign’s patent-pending 4n6 (“forensics”) token.


ZorroSign is proud to secure digital signatures and manage digital transactions as defined by the ESIGN Act, including:

  • Legal enforceability: Providing digital signatures that are legally binding, tied to the actual person (signatory attribution), and immutable with court-admissible security certificates that never expire
  • One Solution: Providing a unified platform for document security, electronic signatures, and digital transactions across PC and mobile endpoints
  • Cost-Savings: Streamlines clerical work and approval workflows with automated contract processing
  • Risk Governance: Providing non-repudiation audit trails and post-execution fraud protection for electronically signed contracts
  • Innovation: Delivering a unique blockchain architecture bolstered by artificial intelligence and machine learning to speed workflows


And ZorroSign helps people and organizations Go Greeneliminating the waste of printing, faxing, scanning, and overnighting paper contracts via environmentally-conscious digital processing.


Contact us today to learn more!