We enable an option (set by default) to include a signature of the encrypted payload in the webhook header to ensure origin and data integrity of the webhook. The signature can be decrypted using your secret API keys.