Reliability and Security
Sigsync is a Microsoft-approved email signature service designed to provide secure, compliant, and reliable email signature management for Office 365. It uses secure cloud services for email signatures and disclaimers following Microsoft-guided mail flow. Your emails are never stored or read by anyone. Authentication is handled via Microsoft OAuth 2.0 and TLS encryption, and your Office 365 credentials are never stored on Sigsync or any third-party servers.
SOC 2 Type 2 Certified
Sigsync is SOC 2 Type 2 certified through an independent audit conducted in accordance with American Institute of Certified Public Accountants (AICPA) standards. This certification demonstrates our commitment to maintaining the highest levels of security, availability, and confidentiality to protect customer data.
ISO 27001 Certified
Sigsync follows ISO/IEC 27001 Information Security Management Standards, ensuring that the complete email signature process is fully secured and regularly audited for compliance.
GDPR Compliant
Sigsync servers are GDPR compliant. Data related to signatures are stored with encryption for additional protection. We only send mails back to Office 365 and hence there is no data movement outside. We have taken care to ensure all the processes are safe and private.
HIPAA Compliant
Sigsync complies with the Health Insurance Portability and Accountability Act (HIPAA), ensuring the secure handling of sensitive health information transmitted via email. The platform employs strong encryption, access controls, and auditing mechanisms to protect data integrity and confidentiality. By adhering to HIPAA’s privacy and security standards, Sigsync helps healthcare organizations and their partners maintain regulatory compliance and safeguard sensitive information throughout the email communication process.
OAuth 2.0 Authentication
Sigsync uses OAuth 2.0 for secure authentication during Tenant Registration and Signature Configuration. Credentials are never stored; instead, access tokens issued by Microsoft’s Office 365 API are used to set up mail flow securely.
Multi-Factor Authentication (MFA)
MFA adds an extra layer of security during sign-in. Sigsync supports MFA-enabled Microsoft 365 accounts and uses Microsoft Authenticator for non-Microsoft logins, ensuring protection against compromised passwords and unauthorized access.
TLS Encryption and Secure Mail Flow
Sigsync uses TLS-encrypted connections verified by Microsoft/Office 365 certificates for both inbound and outbound mail flow, ensuring complete privacy and security of messages during transmission.
Load Balancing, Scalability, and Uptime
Sigsync servers are highly reliable, scalable, and designed to optimize mail handling for consistent uptime, even under high traffic conditions.
Emails Are Not Stored or Read
Emails only pass through Sigsync servers for adding signatures. They are neither stored nor read by anyone. Sigsync is a secure, certified service that follows Microsoft’s recommended flow for Office 365 email signatures and security. It uses OAuth 2.0 authentication, and you are redirected to the Microsoft sign-in page for authentication, ensuring that credentials are never stored on Sigsync or any third-party servers.
Centralized Role-Based Control
Only account owners and authorized admins can modify signature templates, rules, or settings. Integration with Microsoft 365 sign-in and MFA ensures secure, controlled access.
Private Storage of Signature Rules
Signature rules created by admins are encrypted and stored privately. Only authorized users with proper credentials can edit, view, or delete these rules, ensuring complete data confidentiality.
Activity Log
The centralized Sigsync dashboard meticulously records all actions carried out by owners, account administrators, and authorized users in the 'Activity Log.' This comprehensive log encompasses individual user access, activities, and specific actions taken. Each entry is detailed, providing crucial information such as user identification, date, time, event type, success or failure indicators, event origin, and the identity or name of the affected data, system components, or resources.
The 'Activity Log' serves as a fundamental security measure, empowering account managers to vigilantly monitor and track every event within the Sigsync dashboard. This comprehensive oversight ensures robust protection and oversight of the system's activities.
Streamline Email Signature Management with a Free On-demand Demo from Sigsync
Sigsync email signature service provides effortless, centralized signature management for Office 365 and Exchange. Our team can assist you in quickly setting up company-wide signatures. Request a free on-demand demo to see how Sigsync can simplify your email signature management process.
