- gmackayAsked on February 23, 2018 at 12:39 PM
- JotForm SupportdavidAnswered on February 23, 2018 at 01:23 PM
Collecting Sensitive Information. You may not use the JotForm to collect certain types of sensitive information, including but not limited to credit card information and any type of login credentials. You may collect some sensitive information such as social security numbers or driver’s license numbers, but you are required to use best security practices of JotForm including SSL and Encrypted Forms features. You are solely responsible for compliance with any data protection and privacy laws and rules applicable to the sensitive information.
We have recently needed to become much strict on this due to becoming PCI compliant. This required removing any currently stored credit card data from our system. I would recommend removing and credit card fields from forms.
If you require payment authorization, that can be done through one of our many payment processors:
- GarethAnswered on February 23, 2018 at 02:33 PM
I understand PCI compliance. My question was not related to credit cards, rather taking payments offline via a check. You used to have a way to handle this.
- JotForm SupportdavidAnswered on February 23, 2018 at 02:35 PM
If you want to use a payment field but not process any payment, use a purchase order field:
It works the same as a payment field, but does not require the user to pay when the form is submitted.