The sign2.me for Salesforce platform applies different authentication methods, depending on the envelope configuration and the signer’s location:
- Brazil: collection of personal information (full name, CPF, and date of birth) combined with a verification token sent by email as an additional confirmation.
- International: verification token sent by email as the primary confirmation method.
To further enhance security, the platform may also support other authentication methods, depending on configuration and business requirements:
- SMS Verification: a one-time password (OTP) sent to the signer’s mobile phone.
- WhatsApp Verification: a one-time password (OTP) sent to the signer’s WhatsApp account.
All authentication events are recorded in the Audit Log, which includes:
- Date and time of validation.
- Authentication method used.
- Technical details such as IP address, device, browser, and approximate location.
These procedures help prevent fraud and ensure that only the authorized signer can complete the electronic signature, in full compliance with applicable legal and regulatory standards.