What Is the ESIGN Act?

The Electronic Signatures in Global and National Commerce Act (ESIGN Act) is a US federal law enacted on June 30, 2000 granting electronic signatures and records the same legal weight and validity as traditional handwritten signatures on paper documents. It allows electronically signed signatures to be enforceable if all parties agree to use electronic means in establishing a contract.

Aside from electronic signatures, ESIGN makes clickwrap agreements, or the act of clicking an "I agree" button legally equivalent to signing a physical contract, meaning that without this law, every digital contract (privacy policy, terms of service...) wouldn't be legally binding.

Who Does ESIGN Apply To?

All transactions in or impacting interstate or international commerce within the US are subject to the ESIGN Act. This includes almost all US-based internet businesses, such as:

  • E-commerce platforms processing transactions across state lines.
  • SaaS companies onboarding customers with digital agreements.
  • Any website presenting terms of service or privacy policies to US users.
  • Mobile applications requiring user consent.

The law is applicable to both consumers and businesses, but it contains special measures for consumer consent to make sure they are aware about consenting to the use of electronic records. The eIDAS Regulation, which is the EU counterpart of electronic signatures and trust services, should also be known to businesses that operate globally.

ESIGN Act and Clickwrap Agreements

The federal statutory basis for considering a clickwrap "I agree" action as a legally enforceable signature is provided by the ESIGN Act. A signature or contract may not be denied legal effect only because it is in electronic form, according to 15 U.S.C. §7001(a). When determining clickwrap enforceability under ESIGN, courts routinely consider whether the user had reasonable notice of the terms and showed intent to be bound in addition to the presence of an electronic acceptance.

How the ESIGN Act Affects Clickwrap Design

Section 7001(c) imposes specific requirements on clickwrap agreements that are meant for consumers. Before showing the user a record, the business must provide a clear disclosure of the customer's right to receive records and the user must consent to electronic delivery. This consent must be separate from the general terms of acceptance.

Intent to sign is the threshold question. In Specht v. Netscape Communications Corp. (306 F.3d 17, 2d Cir. 2002), the Second Circuit held that an electronic agreement is unenforceable where the user could not reasonably have been aware of the terms before acting. The court ruled that the clickwrap constructive notice was insufficient and had to be designed so that a reasonable user would understand they are entering into a binding agreement.

The consent disclosure must outline the hardware and software requirements required to access and keep the electronic records in accordance with §7001(c)(1)(B). This clause is still in effect even though it predates contemporary web standards. A compliant clickwrap should verify that the user is aware of how to save a copy and that the user's environment is capable of displaying the agreement.

Customers must be made aware of their right to withdraw consent to electronic delivery at any time, as well as the terms and repercussions of doing so, according to Section 7001(c)(1)(D). In addition to providing this information at the time of consent, the clickwrap system must offer a working withdrawal option for the duration of the connection.

What Must Be Shown Under the ESIGN Act

ESIGN's requirements are focused on ensuring the user may access, evaluate, and retain the agreement, in contrast to privacy standards that demand particular disclosures at the point of collection. Before the electronic acceptance is regarded as legitimate, the following conditions must be met:

  • The full agreement text must be available for review prior to the user taking the acceptance action.
  • The consumer consent disclosure under §7001(c), including the right to paper records and hardware/software requirements.
  • A clear description of the scope of the consent, whether the user is agreeing to receive all future records electronically, or only the specific document at hand.
  • Contact information for requesting paper copies or withdrawing consent to electronic delivery.
  • The format and method by which electronic records will be delivered (email, in-app, downloadable PDF).

What Records You Must Keep Under the ESIGN Act

Electronic records must accurately represent the information set forth in the contract and remain accessible to all people entitled to access for the legally mandated retention period, according to Section 7001(d).

A defensible consent record under ESIGN must capture:

  • The signer's identity - Email, account ID, or other attribute linking the acceptance to a specific individual.
  • The exact timestamp - Exact time of the acceptance event, including timezone.
  • The complete agreement text - The exact text presented at the moment of acceptance.
  • The specific UI presented - A screenshot or reconstruction of the interface the user encountered.

The records must be available for as long as any party may need to refer to them, which in reality means the statute of limitations for contract claims in the relevant jurisdiction (usually 4-6 years, but longer for specific claims). ESIGN does not define a retention time. The accessibility criteria is not met by records maintained on offline infrastructure or kept in proprietary formats that become illegible.

ESIGN Act and Clickwrap Agreements

Key Provisions of ESIGN Act

Electronic Signature
An electronic sound, symbol, or process attached to or logically associated with a contract and executed with the intent to sign. Clicking "I agree" qualifies (15 U.S.C. §7006).
Electronic Record
A contract or other record created, generated, sent, communicated, received, or stored by electronic means. Includes clickwrap agreements, digital terms of service, and email confirmations.
Consumer Consent
Before providing records electronically to consumers, the business must disclose the right to paper records and obtain affirmative consent to electronic delivery (15 U.S.C. §7001(c)).
Legal Equivalence
A signature, contract, or record may not be denied legal effect, validity, or enforceability solely because it is in electronic form (15 U.S.C. §7001(a)).
Intent to Sign
The signer must demonstrate intent to be bound by the agreement. In clickwrap, this is satisfied when a user affirmatively clicks an acceptance button tied to displayed terms.
Record Retention
Electronic records must accurately reflect the information set forth in the contract and remain accessible to all parties for later reference (15 U.S.C. §7001(d)).

Penalties for ESIGN Act Non-Compliance

Contract unenforceability Full contract value at risk
Non-compliance may undermine enforceability of the electronic record or signature, depending on the transaction and evidentiary record.
FTC enforcement action Up to $53,088 per violation
The FTC can pursue enforcement under its consumer protection authority if electronic consent practices are deceptive or unfair, with penalties per violation under the FTC Act.
Litigation exposure Varies by claim
Without valid electronic consent records, businesses face increased exposure in contract disputes, class actions, and regulatory investigations where proof of agreement is required.

Frequently Asked Questions

Not on its own. eSIGN establishes that electronic signatures cannot be denied legal effect solely because they are electronic, but the clickwrap agreement itself still has to meet contract requirements in terms of clear presentation, affirmative action, and record-keeping.
ESIGN is a federal law covering interstate and foreign commerce, while UETA is a uniform state law adopted by 49 states. They work together with ESIGN providing the federal baseline, and UETA filling in state-level enforceability. ESIGN preempts state law only when a state has not adopted UETA.
For consumer transactions, yes. ESIGN requires you to inform consumers of their right to paper records and obtain a separate affirmative consent to receive records electronically, including specifying the hardware and software needed to access them.

Related Regulations

UETA
Uniform Electronic Transactions Act
49 States · Active 1999
eIDAS
Electronic Identification, Authentication and Trust Services Regulation
EU-wide · Updated 2024
This entry is for informational purposes only and does not constitute legal advice. Consult a qualified legal professional for guidance specific to your situation.