RatiVault is built on the principle that every document and every signature must be provable, immutable, and secure — for as long as your regulator requires.
Signed documents are stored in immutable, encrypted storage for the full retention period. No one — including RatiVault staff — can modify or delete a vaulted document before retention expires. This is the level of assurance regulated firms need.
SHA-256 hash computed at upload, before any signer touches the document. Every subsequent event (view, consent, sign) adds to the cryptographic chain. Prove document integrity at any point in the retention period.
Per-event logging: IP address (v4/v6), full user agent, ISO 8601 timestamp, verbatim consent text, and document hash. Exportable as signed audit certificates designed for regulatory evidence.
TLS 1.3 in transit. AES-256 at rest via AWS KMS with automatic key rotation. Database connections encrypted. No unencrypted data path exists anywhere in the architecture.
All infrastructure runs on AWS in the UK (eu-west-2). Documents, audit logs, metadata, and backups remain in UK jurisdiction. Enterprise plans support EU or multi-region deployment.
Signing pages contain no analytics cookies, no tracking pixels, no third-party JavaScript. Your clients' financial data and signing behaviour is never shared with, or visible to, any third party.
Our team is happy to walk through our security architecture with you.
Contact us