Trust Center
Welcome to the Dropbox Sign Trust Center
Dropbox Sign includes the Dropbox Sign Standard, Dropbox Sign Premium, Dropbox Sign API Essentials, Dropbox Sign API Standard, and Dropbox Sign API Premium plans.
The documents, contracts, and agreements customers sign as a business are some of the most important documents they have.
Many of these types of transactions involve a legally binding signature and are critical in a company’s operations. Examples include new employee hiring documents, sales contracts, building leases, partner relationships, vendor agreements, and so much more. These documents often contain sensitive information, so security is a primary concern.
With Dropbox Sign Services, which includes Dropbox Sign, Dropbox Forms, and Dropbox Fax, protection of documents and related transactions are the highest priority. We are committed to ensuring the privacy, security, and protection of every document that is signed using Dropbox Sign Services. Use this Trust Center to learn about our privacy and security posture and request access to our documentation.
Introducing the Dropbox Safety Center
Dropbox has launched a new Safety Center to provide greater transparency into how we promote a safe user experience across our services.
The Safety Center brings together information about our safety policies, reporting mechanisms, and how we respond to harmful or abusive content. It is designed to help users better understand the steps Dropbox takes to maintain a safe environment and how to report concerns when they arise.
Visit the Safety Center to learn more: https://safety.dropbox.com/
New Dropbox SOC Reports and ISO Certificates Available
Dropbox’s updated SOC reports for the period of October 1, 2024 through September 30, 2025 are now available for download in the Trust Center. The following reports have been published:
- Dropbox SOC 1
- Dropbox SOC 2
- Dropbox SOC 3
- Dropbox Sign SOC 2
- Dropbox Sign SOC 3
- Dropbox DocSend SOC 2
- Dropbox DocSend SOC 3
- Dropbox Dash SOC 2
Updated ISO certificates for the current certification cycle are also available:
- Dropbox ISO 27001
- Dropbox ISO 27017
- Dropbox ISO 27018
- Dropbox ISO 27701
- Dropbox ISO 22301
- Dropbox Sign ISO 27001
- Dropbox Sign ISO 27018
- Dropbox Dash ISO 27001
For any questions, please contact us through the Trust Center.
AI Transparency at Dropbox
Dropbox has launched our new AI Transparency resource.
It outlines data flows for Dash features and answers key questions about how Dropbox secures and governs our use of large language models (LLMs).
Bug Bounty and Vulnerability Disclosure Program
Dropbox has migrated our Bug Bounty Program to Intigriti. We’ve also launched a Vulnerability Disclosure Program (VDP) giving security researchers a way to report issues that fall outside of our bounty scope or when no reward is expected. While the Bug Bounty program offers compensation for in-scope findings, the VDP supports broader, good-faith disclosures to help us identify and address security issues across Dropbox.
Dropbox Dash AI FAQs Update
Dropbox's AI FAQ is now updated. It answers common questions about how Dropbox uses AI in Dash, explains how we build our AI-powered features responsibly, and gives you confidence about how your information is handled.