Zum Inhalt springen
Unabhängig verifiziert · Quartalsweises Re-Audit
EU VETTED

Eversign (Xodo Sign)

VERIFIZIERT
E-Signatur · Austria
Gegründet 2017 · eversign.com ↗

Vienna-launched e-signature platform (eversign GmbH, 2017), acquired by Apryse (US/PDFTron) in 2022, rebranded as Xodo Sign.

Kurzfassung

Eversign (Xodo Sign) aus der Kategorie E-Signatur wird von einem US-Unternehmen betrieben und unterliegt damit direkt dem CLOUD Act.

Bewertungsnotizen

Eversign GmbH (Vienna + London, founded 2017) launched as an EU-based e-signature platform with SOC II + GDPR + eIDAS + UETA attestation, but in 2022 it was acquired by Apryse (formerly PDFTron Systems Inc., headquartered in Denver, Colorado, USA with operations in Vancouver, Canada) and subsequently rebranded as Xodo Sign. The resulting product is us_owned with direct CLOUD Act exposure under a US parent; it retains a legacy Vienna engineering operation, eIDAS-compliant signature workflow, and a continuing EU-customer base, but procurement-grade EU buyers should choose Yousign (FR, EU-headquartered, eIDAS-qualified), Skribble (CH, no CLOUD Act exposure, ZertES + eIDAS), Universign (FR) or Signaturit (ES) instead; all structurally cleaner than a US-owned parent, with Skribble the cleanest on CLOUD Act exposure (Universign and Signaturit are US-private-equity-owned and AWS-hosted, so material rather than none).

CLOUD ACT
OWNERSHIP
SUB-PROCS
nicht offengelegt
Geprüfte Signale
Jurisdiktion
  • EU-/Angemessenheits-Hosting
  • EU-/Angemessenheits-Betreiber
  • Keine US-CLOUD-Act-Exposition
Transparenz
  • Öffentlicher AVV
  • Unterauftragsverarbeiter offengelegt
  • Open-Source-Clients
  • Zertifizierung durch Dritte
JUMP TO
OVERVIEW

Über Eversign (Xodo Sign)

Eversign was originally founded in 2017 as a Vienna-headquartered e-signature platform operating as eversign GmbH (Austrian Firmenbuch FN572452t, with offices also in London), at launch one of the more promising EU-based DocuSign alternatives, with SOC II + GDPR + eIDAS + UETA compliance and a flat developer-API-friendly pricing model. In 2022 the company was acquired by Apryse (formerly PDFTron Systems Inc.), a US-Canadian document-processing technology group headquartered in Denver, Colorado with operations in Vancouver, Canada (the same Apryse that runs the Xodo consumer PDF tools). Post-acquisition, the Eversign product was integrated into the Apryse portfolio and rebranded as Xodo Sign; the eversign.com URL persists primarily for SEO continuity and existing customer accounts.

For an EU-sovereignty audit the listing now sits firmly outside the procurement-grade tier despite the Austrian engineering heritage. The controlling entity is a US-incorporated parent (Apryse / PDFTron Systems Inc.), which under our strict-ownership stance is us_owned with direct CLOUD Act exposure. The product retains its eIDAS-compliant signature workflow and Austrian/UK operating presence, but contracts are now with the Apryse-controlled entity rather than with an EU-controlled vendor. Compliance attestations carry through: SOC II / GDPR / eIDAS / UETA.

Pricing follows the Apryse-portfolio strategy with transparent per-user / per-document tiers; specific entry-tier EUR figures were not captured at audit. Best fit: existing eversign customers who already have contracts, US-headquartered enterprise buyers using the wider Apryse stack (Xodo / PDFTron). Procurement-grade EU-only buyers should choose Yousign (France, eIDAS-qualified), Skribble (Switzerland, ZertES + eIDAS), Universign (France, qualified trust service provider), or Signaturit (Spain, eIDAS-qualified Barcelona) instead; all listed in this category and structurally cleaner under the strict-ownership stance.

SUB-PROCESSORS

Unterauftragsverarbeiter-Karte · nicht offengelegt

Anbieter veröffentlicht keine Liste der Unterauftragsverarbeiter. Schrems-II-Konformität und CLOUD-Act-Risiko lassen sich ohne sie nicht unabhängig prüfen.
CERTIFICATIONS

Rahmenwerke & Zertifizierungen

SOC 2
AKTIV
Hinweis · US-Rahmenwerk
FEATURES

Funktionsmatrix

Qualifizierte Signatur (QES) Nein
Fortgeschrittene Signatur (AES) Nein
Audit-Trail Ja
Vorlagen Ja
Massenversand Ja
Signieren vor Ort Ja
API / Webhooks Ja
INTEGRATION & ZUGRIFF
REST API Yes
SSO (SAML / OIDC) Yes
COMPLIANCE & GOVERNANCE
Audit log Yes
Self-host / on-prem option No
PRICING

Preise & Tarife

KOSTENPFLICHTIG
Individuelle Preise

Kontaktieren Sie den Anbieter für Staffel- oder Mengenpreise.

Preisseite ansehen ↗
PUBLIC DOCUMENTS

Öffentliche Dokumente

  • Auftragsverarbeitungsvertrag (AVV)
    eversign.com/legal…
    Öffnen ↗
  • Liste der Unterauftragsverarbeiter
    eversign.com/legal…
    Öffnen ↗
  • Nutzungsbedingungen
    eversign.com/legal…
    Öffnen ↗
ALTERNATIVES

Alternativen in dieser Kategorie

Signaturit (Namirial)
Spain · Gegründet 2013
EU-GEHOSTET

Barcelona-based Spanish digital-trust group (Signaturit, a Namirial company; parent Namirial acquired by Bain Capital, US PE, 2025), 4 QTSPs with highest eIDAS qualifications; platform hosted at rest on AWS.

Öffentl. AVV Subprozessoren Open Source
FROM
CLOUD ACT
MATERIAL
Signicat
Norway · Gegründet 2006
EU-GEHOSTET

Trondheim-based pan-European eIDAS QTSP for digital identity, e-ID and qualified e-signatures; Nordic Capital-owned, EEA-hosted on US hyperscalers.

Öffentl. AVV Subprozessoren Open Source
FROM
CLOUD ACT
MATERIAL
Skribble
Switzerland · Gegründet 2018
EU-SOUVERäN

Zurich-based Swiss e-signature platform with dual ZertES + eIDAS QES via Swisscom partnership; ISO 27001, 4,000+ DACH customers.

Öffentl. AVV Subprozessoren Open Source
FROM
CLOUD ACT
NONE