Privacy Policy
DraftSendSign, Inc. — NDA Express, LLC
DraftSendSign Privacy Policy
Last Updated: May 1, 2026
This Privacy Policy explains how NDA Express, LLC, through its DraftSendSign product, collects, uses, stores, shares, and protects information in connection with DraftSendSign’s website, application, software, platform, electronic signature tools, document routing tools, AI-enabled features, subscription services, and related services.
DraftSendSign is a product owned and operated by NDA Express, LLC. In this Privacy Policy, “DraftSendSign,” “NDA Express,” “we,” “us,” and “our” refer to NDA Express, LLC and its DraftSendSign product. “You” and “your” refer to any person who accesses or uses DraftSendSign, including account holders, users, senders, recipients, signers, visitors, and representatives of companies or organizations.
This Privacy Policy is intended to be read together with DraftSendSign’s Platform Terms of Service, which govern use of the Services and make clear that DraftSendSign is a technology platform owned by NDA Express, LLC.
By accessing or using DraftSendSign, creating an account, uploading documents, sending documents for signature, receiving documents, signing documents, using AI features, or otherwise interacting with the Services, you acknowledge this Privacy Policy.
1. Information We Collect
We may collect information directly from you, automatically through your use of the Services, from other users, from recipients or signers, from service providers, and from third-party tools integrated with DraftSendSign.
A. Account Information
When you create or manage an account, we may collect:
name;
email address;
phone number;
username;
password or authentication credentials;
company, law firm, or organization name;
job title or role;
billing contact information;
account settings;
user permissions;
subscription plan information;
support communications; and
other information you provide when creating or managing an account.
B. Sender, Recipient, and Signer Information
When documents are prepared, sent, received, reviewed, signed, completed, or routed through DraftSendSign, we may collect:
sender names and contact information;
recipient and signer names;
email addresses;
phone numbers, if used;
signing roles;
routing order;
assigned fields;
signature, initials, date, text, checkbox, or other field inputs;
status information;
delivery events;
completion events; and
related transaction information.
C. Documents and Customer Content
DraftSendSign may process documents and related content uploaded, generated, routed, signed, stored, or transmitted through the Services, including:
contracts;
agreements;
forms;
exhibits;
attachments;
templates;
signature blocks;
uploaded PDFs or other files;
document metadata;
completed documents;
incomplete drafts;
comments or messages; and
other information contained in or associated with documents.
Documents may contain personal information, business information, financial information, legal information, employment information, real estate information, confidential information, or other sensitive information depending on what users upload or generate.
D. Electronic Signature and Audit Trail Information
To support document routing, signing, security, auditability, and transaction records, we may collect:
timestamps;
IP addresses;
device identifiers;
browser type;
operating system;
approximate location derived from IP address;
access events;
viewing events;
signing events;
completion events;
email delivery events;
authentication events;
consent events;
signature adoption records;
document history;
certificate or audit trail information; and
related system logs.
E. AI Feature Information
If DraftSendSign offers AI-enabled features, including contract drafting, clause generation, document summarization, document review, workflow assistance, or similar tools, we may collect and process:
prompts;
instructions;
uploaded documents;
selected templates;
user-provided facts;
generated outputs;
edited outputs;
usage logs;
feedback;
error logs; and
related metadata.
AI-generated content may be inaccurate, incomplete, outdated, or unsuitable for your specific purpose. DraftSendSign is not a law firm and does not provide legal advice. You are solely responsible for reviewing, editing, approving, and determining whether to use any AI-generated content.
Unless expressly stated otherwise in writing, DraftSendSign does not use customer-uploaded documents or confidential customer content to train publicly available AI models.
F. Payment Information
If you purchase a subscription or paid service, payment information may be collected and processed by our payment processors. We may receive limited payment-related information, such as:
billing name;
billing email;
billing address;
subscription plan;
transaction amount;
payment status;
invoice history;
last four digits of a payment card;
card brand;
expiration date; and
payment processor identifiers.
We do not intend to store full payment card numbers unless expressly stated or required for a particular payment feature.
G. Website, Device, and Usage Information
When you visit the website or use the Services, we may automatically collect:
IP address;
device type;
browser type;
operating system;
referring URL;
pages viewed;
features used;
links clicked;
session duration;
error logs;
performance data;
approximate location;
access times; and
other usage data.
H. Cookies and Similar Technologies
We may use cookies, pixels, local storage, session storage, analytics tools, and similar technologies to:
operate the website and application;
keep users logged in;
remember preferences;
improve performance;
understand usage;
diagnose errors;
secure accounts;
prevent fraud;
measure marketing effectiveness; and
improve the Services.
You may be able to control cookies through your browser settings. Some features may not work properly if cookies are disabled.
2. How We Use Information
We may use information to:
provide, operate, maintain, and improve DraftSendSign;
create and manage accounts;
authenticate users;
process subscriptions and payments;
upload, prepare, route, send, review, sign, complete, and store documents;
generate, maintain, and display audit trails;
deliver emails, notices, reminders, confirmations, and transaction messages;
support AI-enabled drafting, review, summarization, or workflow features;
provide customer support;
troubleshoot errors;
monitor performance;
secure the Services;
detect, prevent, and investigate fraud, abuse, unauthorized access, and misuse;
enforce our Terms of Service;
comply with legal obligations;
respond to subpoenas, court orders, lawful requests, and legal process;
maintain business records;
improve user experience;
develop new features;
communicate about updates, account issues, billing, security, and service changes;
send marketing communications where permitted; and
protect the rights, property, safety, and interests of DraftSendSign, NDA Express, LLC, users, recipients, signers, vendors, and third parties.
3. How We Share Information
We do not sell your documents. We do not sell customer-uploaded contract content.
We may share information in the following circumstances:
A. With Users, Senders, Recipients, and Signers
Information may be shared as necessary to complete document transactions, including showing names, email addresses, signing status, completed fields, signatures, initials, timestamps, audit trail information, and completed documents to authorized parties.
B. With Service Providers and Vendors
We may share information with vendors who help us provide the Services, including providers for:
cloud hosting;
database storage;
document processing;
email delivery;
SMS delivery;
authentication;
analytics;
payment processing;
customer support;
security monitoring;
AI functionality;
error logging;
backup and infrastructure; and
business operations.
These vendors may access information only as reasonably necessary to provide services to us, subject to their own obligations and applicable law.
C. With Your Organization or Account Administrator
If your account is associated with a company, law firm, organization, team, or workspace, information may be accessible to administrators or authorized users of that organization. Administrators may be able to manage users, view document activity, access documents, modify permissions, and control account settings.
D. For Legal Compliance and Protection
We may disclose information if we believe disclosure is reasonably necessary to:
comply with law;
respond to subpoenas, court orders, or legal process;
cooperate with law enforcement or regulators;
enforce our Terms of Service;
protect against fraud, abuse, unauthorized access, or security threats;
protect the rights, property, safety, and interests of DraftSendSign, NDA Express, LLC, users, recipients, signers, vendors, or third parties; or
establish, exercise, or defend legal claims.
E. Business Transfers
We may disclose or transfer information in connection with a merger, acquisition, financing, restructuring, sale of assets, bankruptcy, transfer of product ownership, or similar transaction involving DraftSendSign or NDA Express, LLC.
F. With Your Consent or Direction
We may share information when you instruct us to do so, authorize us to do so, or use features that require disclosure to another person or service.
4. Legal Basis and User Responsibility
You are responsible for ensuring that you have the right to upload, send, store, process, disclose, and use all documents, personal information, recipient information, signer information, and other content submitted through DraftSendSign.
You are responsible for providing any required notices and obtaining any required consents from your employees, clients, customers, recipients, signers, vendors, counterparties, or other persons whose information you submit to DraftSendSign.
If you use DraftSendSign on behalf of an organization, you are responsible for ensuring that your organization’s use of the Services complies with applicable privacy, data protection, employment, consumer protection, electronic signature, confidentiality, and recordkeeping laws.
5. Document Storage, Retention, and Deletion
DraftSendSign may store documents, completed documents, audit trails, metadata, account information, and related records for as long as reasonably necessary to provide the Services, comply with legal obligations, resolve disputes, enforce agreements, prevent fraud, maintain business records, and support legitimate business purposes.
Retention periods may vary depending on:
account status;
subscription plan;
user settings;
document status;
legal requirements;
backup systems;
security requirements;
billing records;
dispute or litigation needs; and
operational requirements.
You are responsible for downloading and maintaining copies of documents, signed documents, audit trails, and records that you need. DraftSendSign is not a permanent archive, official records repository, legal custodian, escrow agent, fiduciary, title agent, or law firm.
If your account is canceled, suspended, downgraded, terminated, or inactive, documents and related data may become unavailable or may be deleted after a reasonable period, subject to applicable law and our operational practices.
Deletion requests may not result in immediate deletion from backups, logs, archives, legal records, security records, or systems where retention is required or reasonably necessary.
6. AI Features and Data Handling
DraftSendSign may provide AI-enabled tools for drafting, generating, summarizing, reviewing, editing, or assisting with documents.
When you use AI features, information you submit may be processed by DraftSendSign and/or third-party AI service providers to generate outputs and operate the feature.
You should not submit information to AI features unless you have the right to do so. You should avoid submitting highly sensitive information unless necessary and appropriate for your intended use.
DraftSendSign does not provide legal advice, legal opinions, attorney review, or legal representation through AI features. AI outputs are not a substitute for review by a licensed attorney.
You are solely responsible for:
the information you submit;
reviewing AI-generated output;
verifying accuracy;
confirming legal sufficiency;
ensuring jurisdictional compliance;
determining whether attorney review is needed;
approving final documents; and
all consequences arising from use of AI-generated content.
Unless expressly stated otherwise in writing, DraftSendSign does not use customer-uploaded documents or confidential customer content to train publicly available AI models.
7. Security
We use commercially reasonable administrative, technical, and organizational safeguards designed to protect information processed through DraftSendSign.
These safeguards may include access controls, authentication tools, encryption in transit, restricted internal access, vendor controls, monitoring, backups, and other security measures.
However, no system, software platform, network, transmission method, storage provider, or electronic service is completely secure. We cannot guarantee absolute security.
You are responsible for:
protecting your login credentials;
using strong passwords;
controlling user access;
removing unauthorized users;
securing your devices and networks;
monitoring account activity;
verifying recipient information;
maintaining backups of important records; and
notifying us promptly of suspected unauthorized access.
8. Marketing Communications
We may send service-related communications, including account notices, security notices, billing notices, legal notices, document notifications, product updates, and transactional messages.
We may also send marketing communications where permitted by law. You may opt out of marketing emails by using the unsubscribe link or contacting us. Even if you opt out of marketing emails, we may still send non-marketing service, legal, billing, security, and transactional communications.
9. Children’s Privacy
DraftSendSign is not intended for children under the age of 13, and we do not knowingly collect personal information from children under 13.
If we learn that we have collected personal information from a child under 13 without appropriate consent, we may delete that information.
Users are responsible for ensuring that documents and recipient information submitted through DraftSendSign comply with applicable laws concerning minors.
10. International Users
DraftSendSign is operated from the United States. If you access the Services from outside the United States, you understand that your information may be transferred to, stored in, and processed in the United States or other jurisdictions where we or our service providers operate.
Privacy and data protection laws in those jurisdictions may differ from the laws where you are located.
11. Privacy Rights and Choices
Depending on your location and applicable law, you may have certain rights regarding personal information, which may include the right to:
request access to personal information;
request correction of inaccurate information;
request deletion of certain information;
object to or restrict certain processing;
request a copy of certain information;
opt out of certain marketing communications;
limit certain uses or disclosures where applicable; and
appeal certain privacy decisions where required by law.
These rights may be limited by law, identity verification requirements, security needs, legal obligations, contractual obligations, dispute resolution, recordkeeping requirements, or the rights of other persons.
For documents and information controlled by a DraftSendSign customer, we may act as a service provider or processor. In those cases, we may direct privacy requests to the customer who controls the information.
12. California and State Privacy Notices
DraftSendSign does not sell customer-uploaded documents.
DraftSendSign does not knowingly sell personal information of users, recipients, or signers.
Depending on applicable law, certain analytics, advertising, or tracking technologies may be considered “sharing” or targeted advertising. If DraftSendSign uses those technologies, we may provide applicable opt-out mechanisms as required by law.
The categories of personal information we may collect include:
identifiers, such as names, emails, IP addresses, and account identifiers;
commercial information, such as subscription and billing records;
internet or network activity, such as usage logs and device data;
professional or business information, such as company name and job title;
electronic signature and transaction information;
document-related information submitted by users;
geolocation approximations derived from IP address; and
inferences or usage analytics related to service performance and improvement.
We collect and use this information for the purposes described in this Privacy Policy.
13. Third-Party Links and Services
DraftSendSign may contain links to third-party websites, tools, integrations, payment processors, authentication providers, AI providers, or other services.
We are not responsible for the privacy practices, security, content, terms, or policies of third parties. Your use of third-party services may be governed by their own terms and privacy policies.
14. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. We may provide notice by posting the updated Privacy Policy, updating the “Last Updated” date, sending an email, providing an in-app notice, or using other reasonable means.
Your continued use of DraftSendSign after an updated Privacy Policy becomes effective means you acknowledge the updated Privacy Policy.
15. Contact
Questions, requests, or notices regarding this Privacy Policy may be sent to:
NDA Express, LLC Attn: Matthew Knych 1600 E 8th Avenue Tampa, FL 33605