Features

Identity validation

A signature is worth what you can prove afterwards. Signater proves the identity of whoever signed with configurable factors, from a code by email to PIX validation.

Every validated factor is recorded in the audit trail and consolidated in the certificate of completion: forensic evidence of the act of signing.

Nine identity factors

Each factor covers a different angle of identity; together, they raise the bar to match the document's risk.

Code by email

A 6-digit code lands in the signer's inbox and must be entered before signing.

Code by SMS

The 6-digit code goes out as a text message, with routing across multiple providers and domestic and international coverage.

Code by WhatsApp

Same mechanics, different channel: the code arrives on the signer's WhatsApp, through the Meta Cloud API with pre-approved templates.

Sender password

A shared secret you define and the signer must enter. Signing only proceeds with the correct password.

PIX with payer data

A payment through PIX, Brazil's instant-payment system, returns the payer's name, tax ID, bank and ISPB: identity attested by the bank.

A1 digital certificate

The signer signs with their own certificate (.pfx/.p12), and the signature is generated with their private key.

Selfie with liveness detection

The browser camera captures the selfie with active liveness detection: gestures like blinking and smiling, verified on the device itself.

Geolocation

The signer's IP address is resolved to city, region and country. When the browser allows it, coordinates come in too, with reverse geolocation.

Unique access links

Every invite gets its own link: the email one, the SMS one and the next-day reminder are all different — trackable and revocable at any time.

PIX validation

Identity proof that comes from the bank

PIX is Brazil's instant-payment system, and it doubles as identity proof. The signer makes a symbolic PIX payment and, in response, the payment arrangement returns the payer's data: name, tax ID (CPF/CNPJ), bank and the institution's ISPB code, plus the transaction identifier.

None of it is declared by the signer; everything comes back from the banking system after a real payment. The result is recorded in the certificate of completion, alongside the envelope's other evidence.

Liveness

Selfie with liveness detection, on whichever camera is at hand

The selfie factor confirms there is a real person in front of the camera — not a photo or a replayed video — and binds the capture to the signing act.

Signing from a computer with no camera? The system issues a QR code on the spot: the signer points their phone at it, takes the selfie there and the flow picks up right where it left off.

The image and the verification result become evidence in the certificate of completion, alongside the other factors.

Verification codes

A 6-digit code by email, SMS or WhatsApp

The code is generated and sent on the spot, through the channel the envelope owner picks — and it lives for 5 minutes. After that it expires and a new one must be requested.

The short window shuts the door on intercepted or reused codes: what reaches the signer's device only works in that moment.

Sender password

A shared password, with a hint for the signer

The envelope owner sets a password only they and the signer know — agreed on outside the flow, in a channel both already use.

They can also leave a hint shown on the signing screen, like "Tax ID — numbers only": the right signer gets it instantly, no questions needed.

Own digital certificate

A1 certificate registered once, used every time

Signers can register their digital certificate on their own account: the file upload and the password happen a single time.

Every signature after that is one click — no re-attaching the .pfx, no retyping the password. The certificate is stored with its password encrypted at rest.

Geolocation

Where the signature happened, on the map

With the browser's permission, the signature records the signer's coordinates at the moment of the act — latitude and longitude right in the certificate of completion.

For anyone signing in the field — the driver in the yard, the inspection at the property, the crew on site — the where becomes proof, next to the when.

Without permission, the flow continues normally — and the system still triangulates an approximate location from the IP, recorded in the certificate alongside the other factors.

Audit trail

Every attempt becomes evidence

Every validation attempt is recorded with IP address, geolocation, device and method used — including the incorrect ones.

A wrong code before the right one also tells the story of the act. In a dispute, you demonstrate not only that the validation happened, but how it happened.

Configuration

You choose the factors

Requirements are set per signer, per envelope. A purchase agreement can require PIX and a selfie; a routine authorization, just the code by email.

Within the same envelope, each signer can have a different combination: more layers for whoever takes on the obligation, less friction for everyone else.

Frequently asked questions

Does the code sent by email, SMS or WhatsApp expire?

Yes. The 6-digit code is generated and sent on the spot, and it is valid for 5 minutes. After that it expires and the signer requests a new one — the short window prevents intercepted codes from being reused.

Which factors are available on my plan?

Most of them, on every plan: codes by email, SMS and WhatsApp, a sender-defined password, selfie with liveness detection, geolocation, and unique access links. PIX validation and the signer's own A1 digital certificate are available on the Business and Enterprise plans.

How does PIX validation work?

The signer makes a symbolic payment through PIX, Brazil's instant-payment system, and the payment arrangement returns the payer's data: name, tax ID (CPF/CNPJ), bank and the institution's ISPB code, plus the transaction identifier. This data is recorded in the certificate of completion as identity evidence.

Does the selfie analyze or match the face?

No. The selfie works as proof of liveness: the browser camera captures the image with active gesture detection, like blinking and smiling, executed on the device itself. The photo is attached to the certificate of completion, in the validation selfies section, as visual evidence of the act.

Can I require more than one factor from the same signer?

Yes. The combination is configurable per signer, per envelope: you can require, for example, PIX and a selfie from the same person on a critical contract. Every validated factor goes into the audit trail and the certificate of completion.

What gets recorded if someone enters the wrong code?

The incorrect attempt is recorded like the rest: IP address, geolocation, device and method used. The full history, hits and misses, is consolidated in the certificate of completion when the envelope ends.

People in front of a laptop reviewing its screen

Talk to the team

Which validation does your document call for?

Our team helps you calibrate the factors for each document type: when a code by email is enough and when it pays to require PIX and a selfie. Get answers about features, plans and implementation directly on WhatsApp.