Do I need to encrypt my form to protect credit card info?

  • Profile Image
    miketomasello
    Asked on February 26, 2018 at 08:23 PM

    Hi

    If I am using Jotform to collect payments & credit card info via Stripe, do I still need to encrypt the form so the credit card info doesn't get into the wrong hands?

    I know I have the option but as a first timer, I don't know if it's necessary?

    Thanks

    MT

  • Profile Image
    Jim_R
    Answered on February 27, 2018 at 01:06 AM

    Hi Mike - The short answer is no, you won't have to. Form Encryption is an optional added layer of security but not a requirement.

    The Forms and Submissions are transmitted securely with a 256 bit high-grade encryption, which means that data is encrypted during the transmission and cannot be interrupted by anyone else. We have an SSL certificate that uses SHA256 with RSA encryption which you can test here if necessary.

    Related article: All-Forms-are-Now-Secured-by-Default

    This and more are discussed in great detail on our Security Page. While you're at it, I also recommend you review our Privacy Policy in case you're concerned on how we manage your data.

    For payment integrations, we don't actually collect the card details - This part is handled by the payment gateway you're using (e.g. Stripe) so we never store any payment related details to begin with.

  • Profile Image
    miketomasello
    Answered on February 28, 2018 at 03:47 AM

    Great! Thanks for letting me know!