On the Formisoft platform
Part of Collect, Patient intake: digital, complete, before the visit
Collect capability
E-Signatures
Electronic signatures with complete forensic audit trails
Consent and agreements signed digitally, with an audit trail stronger than paper.
How it works
Add a Signature Field to Any Form
Drag a signature or consent agreement field onto your form. Patients can draw their signature or type their name to generate one.
Patient Signs During Intake
When the patient signs, Formisoft captures the signature image, computes a SHA-256 hash, and records the timestamp and browser details, all in one step.
Server Verifies the Signature
On submission, the server re-computes the hash independently to verify integrity, captures the signer's IP address, and links the signature to the signer's identity from other form fields.
View Audit Trail or Print Certificate
Staff can expand the full audit trail on any submission, or generate a printable signing certificate with every forensic detail for compliance records.
More in Collect
Other tools that work with E-Signatures in the same step.
Patient Management
Automatic patient records from every form submission
Learn about Patient ManagementCustom Patient Fields
Optional chart fields, sync from intake forms when you need them
Learn about Custom Patient FieldsScored Assessments
Auto-score PHQ-9, GAD-7, and custom clinical questionnaires
Learn about Scored AssessmentsOnline Payments
Collect payments directly through your intake forms
Learn about Online Payments
Part of Collect on the platform
Built for real practices
What practices get with e-signatures, included from day one.
SHA-256 Tamper Detection
Every signature is hashed with SHA-256 at signing time and verified server-side on submission. Any modification to the signature image after signing is cryptographically detectable.
Timestamped Audit Trail
Each signature records the exact date and time of signing in ISO 8601 format, documenting when every consent and authorization was captured.
IP Address Logging
The signer's IP address is captured server-side from request headers, providing geographic evidence of where the signature originated.
Signer Identity Capture
The signer's name and email are automatically extracted from other form fields and attached to the signature, linking identity to the signing event.
FAQ
Are Formisoft e-signatures legally binding?
Formisoft e-signatures are designed to support the requirements of the federal ESIGN Act and state UETA laws by capturing signer intent (explicit sign action), signer attribution (name, email, IP address), and a complete audit trail with tamper detection. These are the core elements courts look for when evaluating electronic signatures. However, legal requirements vary by state and document type, we recommend consulting your legal counsel to confirm compliance for your specific use case.
What is included in the audit trail?
Every signature audit trail includes: the exact timestamp of signing, the signer's IP address, the browser and device used (user agent), a SHA-256 cryptographic hash of the signature image, the signer's name and email, and a verification status indicating whether the hash was confirmed server-side.
What is the signing certificate?
The signing certificate is a printable page that summarizes all forensic details for a specific signature, document information, signer identity, the signature image, timestamp, IP address, and the full SHA-256 hash. Use your browser's print function to save it as a PDF for your records.
What happens to existing submissions without audit trails?
Existing submissions continue to display normally. Signatures captured before the audit trail feature was enabled appear as images without forensic metadata. The certificate page shows a 'not available' notice for these legacy signatures. No data migration is needed.
Try Formisoft
Scheduling, patient intake, patient communications, telehealth, and reviews in one platform, one login.
Start trial