CHEEZYSign: Green Digital Signature: ✍️ Create a Quote, Send a Link to Your Client and… Close!
צור הצעה חינם

Privacy Policy

Last updated: February 1, 2026

CHEEZYSign (“we”, “us”, or “our”) operates the website https://cheezysign.com and provides an electronic signature and document transaction platform (the “Service”). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Service.

By accessing or using CHEEZYSign, you agree to the collection and use of information in accordance with this Privacy Policy. If you do not agree to this Privacy Policy, you must immediately cease all use of the Service.

1. Information We Collect

1.1 Personal Information

We may collect personal information that you voluntarily provide to us, including but not limited to:

  • Name
  • Email address
  • Phone number
  • Company name
  • Billing address
  • Payment information (processed exclusively by Stripe, Inc. — we do not store, access, or retain full payment card details at any time)
  • Government-issued identification information where required for identity verification

1.2 Document and Signature Data

When you upload documents, send signature requests, or execute electronic signatures through the Service, we process document contents, metadata, IP addresses, timestamps, audit logs, device fingerprints, browser identifiers, geolocation data, and signature-related data strictly for the purpose of providing the Service.

Specifically, for every signature and payment transaction processed through CHEEZYSign, we collect and retain the following evidentiary records:

  • Digital Signature Record: A cryptographically secured record of the signer’s electronic signature
  • IP Address: The Internet Protocol address of the device used to view, sign, and pay
  • Timestamp: Precise date and time (UTC) of each action including document viewing, signing, and payment authorization
  • Verified Email Address: The email address used by the signer, verified through our authentication process
  • Comprehensive Audit Logs: A complete, tamper-evident log of every action taken by the signer, including but not limited to: opening the document, scrolling through pages, time spent reviewing the document, executing the signature, and authorizing payment
  • Device and Browser Fingerprint: Technical identifiers of the device and browser used
  • Session Data: Complete session tracking from document access through payment completion
  • Consent Records: Explicit records of the signer’s affirmative consent at each stage of the transaction workflow

These records are collected automatically and stored securely as part of our audit trail system. They serve as conclusive evidence of the signer’s informed, voluntary, and deliberate participation in the transaction.

1.3 Automatically Collected Information

We automatically collect certain information when you visit our website, including:

  • IP address
  • Browser type, version, and device information
  • Operating system
  • Referring URLs
  • Usage patterns and interaction data
  • Screen resolution and viewport data
  • Click patterns and navigation behavior
  • Session duration and page visit history

1.4 Cookies and Tracking Technologies

We use cookies, web beacons, local storage, and similar technologies to enhance user experience, improve performance, analyze traffic, personalize content, maintain security, and generate evidentiary records for transaction verification purposes. You can manage cookie preferences through your browser settings. However, disabling certain cookies may impair the functionality of the Service and the integrity of audit trail records.

1.5 Transaction and Payment Data

When payments are processed through the Service, we receive and retain limited billing-related information from Stripe, including payment status, transaction identifiers, subscription tier, partial card identifiers, billing country, and confirmation of payment authorization. CHEEZYSign does not process, handle, or store any payment card data directly. All payment processing is performed exclusively by Stripe, Inc.

2. How We Use Your Information

We use collected information to:

  • Provide, operate, and maintain the Service
  • Process transactions and subscriptions via Stripe Billing
  • Authenticate users and prevent fraud
  • Generate legally valid and comprehensive audit trails for electronic signatures and payment transactions
  • Create and preserve evidentiary records to protect against unauthorized chargebacks, payment disputes, and transaction denials
  • Communicate with you regarding your account or service updates
  • Improve our platform functionality and performance
  • Comply with legal obligations, respond to legal process, and cooperate with law enforcement
  • Defend CHEEZYSign, its operators, and its users against claims, disputes, chargebacks, and legal proceedings
  • Verify the identity and authorization of signers and payers
  • Maintain records demonstrating informed consent and deliberate action by all transaction participants

3. Payments and Billing (Stripe)

3.1 Payment Processing

All payment transactions are processed securely and exclusively through Stripe, Inc. (“Stripe”). CHEEZYSign does not at any time store, process, access, handle, transmit, or retain full credit card numbers, banking credentials, or sensitive payment card data. CHEEZYSign acts solely as a technology platform that facilitates the connection between users and Stripe’s payment processing infrastructure.

3.2 Fee Structure and Revenue Disclosure

Payments processed through the Service are subject to the following fee structure:

  • Stripe Processing Fee: 2.9% + $0.30 per transaction (or as otherwise specified by Stripe’s current published rates), charged by Stripe, Inc. for payment processing services. This fee is collected and retained entirely by Stripe.
  • CHEEZYSign Platform Fee: 1% of the transaction amount, charged by CHEEZYSign as a platform service fee for facilitating the electronic signature and payment workflow. This fee is collected and retained by CHEEZYSign.

CHEEZYSign’s sole revenue from payment transactions is the 1% platform fee described above. The remaining transaction processing fees are collected and retained exclusively by Stripe, Inc. CHEEZYSign does not hold, escrow, custodize, or otherwise retain any customer funds, payment amounts, or transaction proceeds at any time. All funds flow directly from the payer to the payee through Stripe’s payment infrastructure.

3.3 No Custodial Role

CHEEZYSign expressly disclaims any role as a payment processor, payment facilitator, money transmitter, escrow agent, custodian, or financial intermediary. CHEEZYSign is a technology platform provider only. CHEEZYSign does not:

  • Hold or custody any customer funds
  • Process, transmit, or handle payment card data
  • Act as merchant-of-record for any transaction
  • Make any manual intervention in payment processing
  • Have the ability to issue refunds, reverse charges, or modify payment amounts
  • Bear any responsibility for the success, failure, or authorization of any payment transaction

All payment processing, fund transfers, refund capabilities, and chargeback management are handled exclusively by Stripe in accordance with Stripe’s Terms of Service and applicable payment network rules.

3.4 Stripe’s Independent Role

Stripe’s privacy and data handling practices are governed by Stripe’s own Privacy Policy available at https://stripe.com/privacy. CHEEZYSign has no control over and assumes no responsibility for Stripe’s data practices, security measures, or compliance obligations.

We may receive limited billing-related information from Stripe, such as payment status, subscription tier, partial card identifiers, and billing country, solely for account management, audit trail generation, and dispute evidence purposes.

4. Legal Basis for Processing (GDPR & Global Compliance)

For users located in the European Economic Area (EEA), United Kingdom, or similar jurisdictions, we process personal data under the following lawful bases:

  • Performance of a contract: Processing necessary to fulfill our obligations under the Terms of Service
  • Legal obligations: Processing required to comply with applicable laws, including electronic transaction record-keeping requirements
  • Legitimate interests: Processing necessary for fraud prevention, dispute protection, chargeback defense, security, and platform improvement
  • User consent: Where applicable and where other lawful bases do not apply

Our legitimate interest in collecting and retaining comprehensive transaction records, audit trails, and evidentiary data is specifically based on the need to protect against fraudulent chargebacks, unauthorized payment disputes, and false claims of non-authorization, which represent significant business risks inherent to electronic transaction platforms.

5. How We Share Information

We do not sell personal data. We may share information only with:

  • Service providers: Hosting providers, analytics platforms, email delivery services, and infrastructure vendors, solely for the purpose of operating the Service
  • Payment processors: Stripe, Inc., for payment processing and billing
  • Legal authorities: When required by law, valid legal process, court order, or governmental request
  • Chargeback and dispute resolution: With payment networks, card issuers, acquiring banks, and dispute resolution bodies when necessary to respond to chargebacks, payment disputes, or fraud claims. This includes sharing audit trail data, signature records, IP logs, timestamps, email verification records, consent records, and all other evidentiary data necessary to demonstrate that a transaction was authorized, informed, and deliberate.
  • Affiliates or successors: In the event of merger, acquisition, asset sale, or corporate restructuring
  • Professional advisors: Legal counsel, accountants, and auditors, under appropriate confidentiality obligations

6. Data Retention

We retain personal data and document-related data only as long as necessary to provide the Service, comply with legal obligations, resolve disputes, defend against claims, and enforce agreements.

Transaction records, audit trails, signature data, IP logs, timestamps, email verification records, consent records, and all evidentiary data related to signed documents and payment transactions are retained for a minimum of seven (7) years from the date of the transaction, or longer if required by applicable law, ongoing disputes, or pending legal proceedings. This retention period is necessary to protect against chargebacks, disputes, and claims that may arise after the transaction date.

You may request deletion of your personal data subject to legal retention requirements and our legitimate interest in retaining evidentiary records for dispute protection purposes.

7. Data Security

We implement commercially reasonable administrative, technical, and organizational security measures including:

  • SSL/TLS encryption for all data in transit
  • End-to-end encryption for sensitive documents
  • AES-256 encryption for data at rest
  • Role-based access controls
  • Web Application Firewall (WAF) protection
  • Daily automated backups
  • Continuous monitoring and intrusion detection
  • Secure audit logging with tamper-evidence controls
  • Regular security assessments

However, no system is completely secure, and we cannot guarantee absolute security. You acknowledge that electronic communications and storage involve inherent risks, and CHEEZYSign shall not be liable for any unauthorized access, data breach, or security incident except to the extent caused by CHEEZYSign’s gross negligence or willful misconduct.

8. Electronic Signatures, Payment Authorization, and Legal Validity

8.1 Integrated Signature-to-Payment Workflow

CHEEZYSign provides tools to create electronic signatures and audit trails in accordance with widely recognized electronic signature frameworks including the U.S. ESIGN Act, UETA, eIDAS, and similar international standards.

CHEEZYSign’s workflow is specifically designed to establish a clear, documented chain of informed consent and deliberate action by the signer/payer. The standard transaction flow is as follows:

  1. Document Presentation: The signer receives and reviews the document (e.g., quote, proposal, agreement)
  2. Active Review: The system records that the signer opened, viewed, and scrolled through the document
  3. Electronic Signature: The signer affirmatively executes an electronic signature, demonstrating agreement to the terms
  4. Payment Authorization: After signing, the signer is presented with a payment interface and affirmatively authorizes the payment

Each step is independently logged, timestamped, and recorded with the signer’s IP address, device information, and session data. This multi-step workflow creates strong and comprehensive evidence that the signer/payer:

  • Received the document or proposal
  • Reviewed its contents
  • Affirmatively signed the document, indicating agreement
  • Affirmatively authorized the payment with full knowledge of the amount and terms

8.2 Evidentiary Value of Records

The audit trail and transaction records generated by CHEEZYSign constitute strong prima facie evidence of:

  • The identity of the signer (verified email, IP address, device fingerprint)
  • The signer’s awareness and informed consent to the transaction
  • The deliberate and voluntary nature of both the signature and payment authorization
  • The integrity and unaltered status of the signed document
  • The chronological sequence of events demonstrating a conscious, multi-step authorization process

8.3 No Legal Advice

CHEEZYSign does not provide legal advice and does not guarantee that any document or signature will be legally enforceable in all jurisdictions or circumstances. Legal enforceability depends on applicable law, document type, jurisdiction, and surrounding facts. Users should consult qualified legal counsel regarding electronic signature enforceability and compliance.

9. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence, including the United States and jurisdictions where our service providers operate. We use appropriate safeguards such as standard contractual clauses (SCCs), adequacy decisions, or equivalent mechanisms where required by applicable law.

10. Your Rights

Depending on your jurisdiction, you may have the right to:

  • Access your personal data
  • Correct or update your data
  • Request deletion (subject to legal retention requirements and our legitimate interest in retaining evidentiary records)
  • Restrict or object to processing
  • Withdraw consent (where processing is based on consent)
  • Request data portability
  • Lodge a complaint with a supervisory authority

You may exercise your rights by contacting us at: [email protected]

Please note: Requests for deletion of transaction records, audit trails, and evidentiary data may be declined where retention is necessary for legal compliance, dispute protection, chargeback defense, or enforcement of legal rights, in accordance with applicable data protection laws.

11. Children’s Privacy

Our Service is not intended for individuals under the age of 18. We do not knowingly collect personal data from children. If we become aware of such data, we will delete it promptly.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated “Last updated” date. Continued use of the Service after changes constitutes acceptance. For material changes, we may provide additional notice via email or in-app notification.

13. California Privacy Rights (CCPA/CPRA)

If you are a California resident, you may have additional rights under the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA), including the right to know what personal information is collected, request deletion, and opt out of the sale of personal information. We do not sell personal information. To exercise your California privacy rights, contact us at [email protected].

14. Contact Information

If you have any questions about this Privacy Policy or our data practices, please contact us at:

CHEEZYSign Email: [email protected]