This article is also available in:
MightyForms makes sure your data is secure and only accessible to those with proper authorization by using end-to-end SSL data encryption. On top of that, we have strict access control policies, routinely check servers, and app for security bugs and breaches.

256 Bit SSL
All of our databases are AES 256-bit encrypted, one of the strongest encryption standards.

Physical security
All data stored and/or collected using MightyForms goes through end-to-end SSL encryption, is hosted safely in Amazon Web Services (AWS). They are compliant with security and privacy standards. We keep your data safe until you decide to export/delete it.

GDPR Compliance
The General Data Protection Regulation 2016/679 is a regulation in EU law on data protection and privacy in the European Union and the European Economic Area. It affects all businesses that collect personal data within the EU or of EU citizens. Learn more.

PCI-DSS Certified
MightyForms is certified under the Payment Card Industry Data Security Standard. As a business that helps users integrate with payment apps and collect payments online, we made sure to offer one of the highest levels of data security. See our certificate.


Form Privacy
You can limit access to your forms by locking them behind passwords. Learn how.

Privacy
Access to form submissions’ data is protected and requires login to the account which owns that form. You have total ownership of your forms and submissions, and access to your data is granted only with your permission when you use an integration app. Rest assured that we treat your data with the utmost confidentiality.

Backup Your Data
You can backup your data anytime by exporting all of your form submissions as CSV files. Or backup automatically by integrating with Google Sheets, or other data storage integrations.

Spam Protection
All forms created with MightyForms, regardless of the plan you are subscribed to, include Google’s reCAPTCHA V3 bot protection.

Service Level Agreements
If your business needs an SLA for legal reasons, one can be provided for you. MightyForms has a near-perfect uptime ratio of 99.9%, so you’ll always be able to access your data. You can check our operational status in real-time here. You can request a DPA from our team by starting a conversation through our Live Chat.

Account Security
All the information in your account is automatically encrypted. Only you have access to your forms and submissions, unless you share your username and password with others. You may add multiple users to your account with a Custom Plan.

Customizable Security
No matter what industry you are in, MightyForms wants to make sure that your online forms meet your business needs. If you need additional security control, our team can create them especially for you when you sign up for a Custom Plan.

HIPAA Compliance
The US Health Insurance Portability and Accountability Act, aka HIPAA, is a federal statute that standardizes how to protect sensitive data about health patients, so any information can't be disclosed without the patient's consent or knowledge.
Disclosure: HIPAA compliant forms are available only for Enterprise users

CCPA Compliance
CCPA is a California State law to protect Californian consumers’ personal information. Any business operating in the State must comply with its regulation.
Disclosure: CCPA compliant forms are available only for Enterprise users

LGPD compliance
LGPD is a Brazilian statutory law that guarantees the right to keep all personal data under protection and privacy, and also regulates how data is processed.
Disclosure: LGPD compliant forms are available only for Enterprise users
Was this article helpful?
Cancel
Thank you!