DocuSign Achieves StateRAMP Authorization

DocuSign is proud to share that two of our products have achieved StateRAMP authorization, deepening our commitment to offering state and local governments access to seamless and secure agreement experiences.

Building off DocuSign’s FedRAMP Moderate authorization, DocuSign eSignature (DocuSign Federal) and DocuSign CLM have achieved StateRAMP authorization.

With our StateRAMP authorization, DocuSign can help state governments better manage cyber risk and protect critical data within government agreements and digital workflows.

As StateRAMP Authorized products, DocuSign eSignature and CLM have met the National Institute of Standards and Technology (NIST) Special Publication 800-53 (NIST 800-53) rev 4 security and privacy controls required by the StateRAMP Moderate security control baseline, and will adhere to continuous monitoring requirements. DocuSign will submit monthly and annual reports to demonstrate ongoing compliance.

Why the StateRAMP designation is important

StateRAMP is a non-profit membership organization that helps state and local governments and higher education institutions procure cloud services and software that meet certain cybersecurity standards.

It does this by developing standards for cloud security, educating on best practices and recognizing a common method for verifying the cloud security of vendors who use or offer cloud solutions that process, store and/or transmit government data, including personally identifiable information (PII), personal health information (PHI) and payment card industry (PCI) information.

This framework can be implemented by procurement and security officials to continuously improve cybersecurity for state and local governments, providers and the constituents they serve.

StateRAMP Authorization builds on our vision of making the process of agreeing smarter, easier and more trusted

With the new StateRAMP designation, state and local governments and education organizations can be confident in the security of their agreement data.

DocuSign’s StateRAMP Authorized solutions allow organizations to:

• Maintain a gold standard security posture by prioritizing data and privacy while fostering trust among constituents and other government entities.
• Prioritize compliance with state government standards and regulations, demonstrating their commitment to security by reducing the risk of unauthorized access to government data.
• Mitigate risk with how organizations process, store and/or transmit government data within their agreements. DocuSign’s solutions live in a high-security environment and offer advanced data integrity and audibility features, a robust digital audit trail and signature verification.
• Reduce the burden on state and local IT resources by tapping into a standardized approach to evaluating and selecting trusted technology solutions. This streamlined procurement process makes evaluating and selecting trusted technology solutions easier.

Visit the DocuSign for Government page to stay up to date on StateRAMP authorized offerings and learn more about our solutions.