This page informs about app permissions, privacy and security of the following Namirial Apps installed via Enterprise Deployment and licensed via License Server:
- xyzmo Signature Capture App
- SIGNificant Client Signature Capture App
- SignAnyWhere App
- SIGNificant SignOnPhone App
Note that apps listed in the Google Play Store may require different permissions. Read here about our Google Play Store listed apps.
Permissions
The following table shows the required permissions and why our apps need it:
Commercial Name | xyzmo Signature Capture App | SIGNificant Client Signature Capture App | SignAnyWhere App | SIGNificant SignOnPhone App |
|---|---|---|---|---|
| Permission | ||||
| Account | required for licensing | required for licensing | required for licensing | required for licensing |
| Storage | optional for loading and saving documents (e.g. from file system and third party apps) | optional for loading and saving documents (e.g. from file system and third party apps) | not used | not used |
| Location | optional for location information | optional for location information | optional for location information | optional for location information. Android up to 11: optional to find and connect new Bluetooth devices, communicate with paired Bluetooth devices, connect the app via Bluetooth to the xyzmo Client |
| Bluetooth | optional for Wacom Bluetooth Pen support | optional for Wacom Bluetooth Pen support | optional for Wacom Bluetooth Pen support | optional for Wacom Bluetooth Pen support Android 12 and newer: |
| Camera | not used | optional for scanning a QR code, picture annotation, attachment of camera | optional for scanning a QR code, attachment of camera | optional for scanning a QR code |
Privacy and Security
The Apps are working with the SIGNificant server to enable the signature features. The server is typically hosted by the creator of the document or in some cases directly by Namirial.
The provided data is transferred encrypted (via HTTPS) and stored safely on the SIGNificant server. If Namirial is hosting the service, we will not share the data with others. Biometric signature data is highly encrypted via RSA and AES-256 directly on the user’s device to prevent any misuse.
The following table shows which personal data is processed by our SIGNificant servers:
| Namirial App | Information processed by SIGNificant server (hosted by creator of document or in some cases by Namirial) |
|---|---|
| xyzmo Signature Capture App |
|
| SIGNificant Client Signature Capture App (SIGNificant E-Signing Client) |
|
| SignAnyWhere App |
|
| SIGNificant SignOnPhone App |
|
Access to the data of the document have just the creator of the document and the signer (user of apps). Responsible for transporting the document-access-link is the creator of the document (e.g. via Email). Documents typically are temporary on a SIGNificant server and will be removed after the document is finish into a protected archive. Documents at servers, hosted by Namirial, are stored temporary (time is set up by creator of the document).
All connections to the server are logged for support and metrics reasons. Therefore, the IP address and actions are stored in the log files.
Namirial doesn’t share any data with others. If you have any questions about apps, privacy or security feel free to contact us.