Legal

Privacy Policy

Last updated: June 23, 2026

1. Information We Collect

When you use DocRunner, we collect:

  • Account information. Name, email address, and company name when you create an account.
  • Documents. PDFs and documents you upload for signing. These are stored securely and only accessible to you and your designated signers.
  • Signing data. Signatures, IP addresses, timestamps, and browser information collected during the signing process for audit trail purposes.
  • Integration data. When you connect monday.com, we access board and item data as authorized by your OAuth permissions.
  • Usage data. Pages visited, features used, and performance metrics to improve the service.
  • Payment information. Processed securely by Stripe. We do not store credit card numbers.

2. How We Use Your Information

  • To provide and maintain the DocRunner service
  • To send documents for signature and track their status
  • To create legally compliant audit trails and Certificates of Signature
  • To sync signing status with your monday.com boards
  • To process payments via Stripe
  • To send transactional emails (signing invitations, reminders, completions)
  • To communicate service updates and respond to support requests

3. Data Storage and Security

Documents and data are stored on encrypted servers (AWS S3 and PostgreSQL on Render). All data in transit is encrypted via TLS. We implement industry-standard security practices including encrypted backups, access controls, and regular security reviews.

4. Data Sharing

We do not sell your data. We share data only with:

  • Service providers. AWS (storage), Render (hosting), SendGrid (email), Stripe (payments). Only as needed to operate the service.
  • Your signers. Documents and signing links are shared with the people you designate as signers.
  • Legal requirements. If required by law or to protect our rights.

5. Data Retention

We retain your documents and signing records for as long as your account is active. Completed signing audit trails are retained indefinitely to support the legal validity of signed documents. You may request deletion of your account and associated data by contacting us.

6. Your Rights

You may request access to, correction of, or deletion of your personal data by emailing privacy@docrunner.io. If you are in a jurisdiction with specific data protection rights (e.g., GDPR, CCPA), we will honor those rights.

7. Cookies and Analytics

The DocRunner application uses essential cookies for authentication and session management. The marketing site uses two analytics tools:

  • Plausible Analytics. Privacy-friendly, cookieless. Counts page views and traffic sources only. No personal data collected.
  • Google Analytics 4. Sets _ga and _ga_<id> cookies in your browser to measure aggregate site usage (page views, scroll depth, outbound clicks, session duration). IP addresses are anonymized by Google. We do not use Google Analytics for advertising personalization, retargeting, or cross-site tracking.

You can opt out of Google Analytics by installing the Google Analytics Opt-out Browser Add-on or by clearing the relevant cookies in your browser.

8. Changes to This Policy

We may update this policy from time to time. We will notify you of significant changes via email or through the application.

9. Contact

For privacy-related questions, contact us at privacy@docrunner.io.