What data does Signando store about my certificates?

Maximum security by design: The Signando License Shop only stores the cryptographic fingerprints (SHA256 hashes) of your Root CA certificates. We never receive, store, or have access to your actual certificates, private keys, or any certificate contents.

A fingerprint is a one-way hash that uniquely identifies your certificate but cannot be used to reconstruct it. This means:

• Your private keys never leave your air-gapped Root CA system
• Your certificates remain completely under your control
• Even if our systems were compromised, your PKI would remain secure
• We can verify your license without accessing sensitive cryptographic material

Technical Details

We use SHA256 fingerprints calculated from your Root CA's public key. The fingerprint format is:

This hash cannot be reversed to obtain your certificate or private key.