E-Signature Legal Statement

Last updated: April 2026

Legal Framework

Electronic signatures executed through Nainty are designed to comply with:

• Electronic Transactions Act 1999 (Cth) — Australian federal legislation
• Equivalent state and territory Electronic Transactions Acts
• eIDAS Regulation (EU) — where applicable to EU-based signers
• ESIGN Act and UETA (US) — where applicable to US-based signers

Signing Process

1. Consent: Signer explicitly consents to electronic signing before proceeding.
2. Identity: Signer identified via email address (proposal/contract sent to their verified email).
3. Capture: Signature captured via canvas drawing or typed name entry.
4. Hash: SHA-256 cryptographic hash generated from: signature data + document content + timestamp.
5. Audit: Signing event recorded with IP address, user agent, and timestamp.

Audit Trail

Every signing event is logged in an append-only, immutable audit trail:

• Document viewed (with timestamp and IP)
• Signature drawn or typed
• Signature submitted
• Signature declined (if applicable)
• All parties signed

Audit trails are retained for 7 years and cannot be modified or deleted.

Tamper Evidence

Each signed document has a SHA-256 hash chain. Any modification to the document after signing is detectable by comparing the stored hash against the current document content.

Verification

Signed documents can be verified at any time. Each signed document includes a certificate showing: signer names, signing dates, signature hashes, and IP addresses.

Limitations

Electronic signatures may not be legally valid for all document types. Certain documents (e.g., wills, powers of attorney, real property transfers) may require wet-ink signatures under applicable law. Consult a legal professional for specific requirements.