Last updated: March 2026
Close The Gap Foundation ("CTG," "we," "us") operates CTG Sign, a legally-binding electronic signature platform. This Privacy Policy describes how we collect, use, and protect your personal information when you use CTG Sign.
Account Information: Name, email address, organization name, and password (hashed) when you create an account.
Signing Information: When you sign a document, we collect your name, email, IP address, device type, browser information, geolocation (if you grant permission), and timestamp. This data is required for legal compliance under the ESIGN Act and UETA.
Document Data: Uploaded PDF templates and signed documents are stored securely. We do not access document contents except as needed to provide the service.
Usage Data: We collect anonymized usage metrics to improve the platform, including page views, feature usage, and error logs.
All data is stored on encrypted infrastructure hosted by Vercel and Neon (PostgreSQL). Documents are stored in Vercel Blob with private access controls. Passwords are hashed using bcrypt. OTP codes are stored as SHA-256 hashes. OAuth tokens are encrypted with AES-256-GCM.
Signed documents, audit trails, and Certificates of Completion are retained for the duration of your account plus 7 years, or as required by applicable law. You may request deletion of your account and associated data by contacting us.
We use the following third-party services:
We do not sell your personal information to third parties.
You have the right to access, correct, or delete your personal information. You may withdraw consent for electronic signatures by not completing the signing process. To exercise your rights, contact us at privacy@closethegapfoundation.org.
Close The Gap Foundation
Email: privacy@closethegapfoundation.org