The Cornerstones of emSigner’s Security Program
Trust
Delivering Trust, Backed by a Decade of Expertise
With over 10 years as a trusted service provider in global markets, we bring unparalleled experience to consumer and enterprise applications, ensuring confidence at every touchpoint.
Security
Robust Security with Cutting-Edge Technology
emSigner uses leading cryptography, endpoint protection, and multi-layered safeguards to secure your data. With 24/7 monitoring and ongoing training, we ensure your information stays protected.
Security, Industry Compliance
-
SOC 1 Type II
eMudhra has received the SOC 1 Type II certification. The certification issued by AICPA, the world's largest member association representing the accounting profession, affirms that eMudhra has proper internal controls and processes in place to assure financial information is handled in a secure and controlled manner. The report can be made available upon request and under NDA.
-
SOC 2 Type II
eMudhra has received the SOC 2 Type II certification. The certification issued by AICPA, the world's largest member association representing the accounting profession, affirms that eMudhra is compliant with the principles of security, availability, processing integrity, confidentiality and privacy, and has proper internal controls and processes in place to protect client data. The report can be made available upon request and under NDA.
-
ISO 27001:2022
emSigner is certified with ISO 27001, an international standard which is recognised globally for managing risks to the security of information we hold. ISO 27001:2022 (the current version of ISO 27001) provides a set of standardised requirements for an Information Security Management System (ISMS).
-
CMMI Level 5
yemSigner is CMMI Level 5 accredited, a program run by the Carnegie Mellon Institute. CMMI defines criteria that assess product and service companies against their software development capability and maturity.
-
HIPAA
The Health Insurance Portability and Accountability Act of 1996, commonly known as HIPAA, is a series of regulatory standards that outline the lawful use and disclosure of Protected Health Information. eMudhra is compliant with all aspects of HIPAA. We ensure that all requirements related to health information are followed comprehensively and ensure that patients' Personal Health Information (PHI) is handled with utmost care. You can place your complete trust in our foolproof security measures and rest easy, knowing that your organization's security is safe in our hands.
-
SAFE Identity/DirectTrust Identity
eMudhra has received DirectTrust Identity Certification (formerly Safe Identity Certification). Issued by SAFE Identity (now DirectTrust Identity), a US based industry consortium and certification body operating a Trust Framework for digital identities in healthcare, this certification provides assurance that eMudhra's paperless office solution - emSigner - is capable of processing identity credentials by applying and verifying digital signatures on PDF documents to the global healthcare community.
Membership
|
Body
|
eMudhra’s Position
|
Description
|
|---|---|---|
|
PKI Consortiaum
|
Chairman, Asia PKI
Consortium
|
APKIC brings together regulators and key players
from 12+ countries in Asia. The consortium aims at understanding
PKI-driven digitization and cross border digitization.
|
|
Cloud Signature Consortium
|
Board Member
|
Cloud Signature Consortium (CSC) is aimed at
arriving at some global standards around utilization of eSignatures.
eMudhra is a Board member of the body that consists of 40+ members.
Currently, CSC is chaired by Adobe.
|
|
CA Browser Forum
|
Member
|
CA Browser Forum is an invite-only membership
forum for Webtrust accredited global trust providers working at a
global scale to provide authentication, code signing, and SSL
certificates.
|
|
FIDO Alliance
|
Member
|
FIDO alliance is strategically partnered with
eMudhra to promote the use of FIDO based authentication in
India.
|
|
Digital India
|
Key Member
|
eMudhra is a key member of the Digital India
Program and has enabled significant changes in promoting a
presence-less, cashless, and paperless society in India.
|
Documents & Certifications
emSigner maintains a list of documents and certifications to support its security compliance and these can be made available on request. These include ISO certificates, GDPR compliance, and HIPAA compliance certificates.
Access to documents such as SOC2 Type II certificate, our penetration test report summary and any other specific documents may be provided upon signing an NDA.
