Form encryption vs password protection

  • Profile Image
    Asked on September 10, 2019 at 12:55 AM

    Hi can you please clarify the differences between form encryption and password protection please?

    Or confirm/correct my understanding:

    Encryption applies to the COMPLETED form data that requires a key to unlock. This key is randomly set by you guys, you're screwed if it gets lost and it's a challenge if multiple team members need to look at the form data.

    Password protection applies to ACCESSING a form either before or after data is entered. This type of form may also be encrypted?

    Is it possible to set a series of user passwords to access completed encrypted forms?

    How can encrypted data be de-encrypted when sent to GSuite spreadsheets or docs for example?

    Is it possible to set up an automatic forward of a completed encrypted form that can be de-encrypted outside of the jotform platform via a user passcode instead?

    I need encrypted forms but I'm finding your system super frustrating and very user unfriendly to be honest!

    Thanks for your help :-)

  • Profile Image
    Answered on September 10, 2019 at 01:12 AM


    Your understanding is partially correct. Encryption feature encrypts form responses. Encrypted responses can be only decrypted in our system using your key. Some features like reports and emails may be not available for encrypted forms since there's no way to decrypt outside of JotForm. 

    Password protection will set a password to access the form for respondents, this does not password protect submissions. You can share submissions page following this guide: How-to-Share-Form-s-Submissions-Page

    Encryption and password protection can be applied to same form.

    I can suggest to consider other feature that provides encryption on forms, you could enable HIPAA compliance: 

  • Profile Image
    Answered on September 10, 2019 at 01:48 AM

    Thanks for you helpful and quick response Victoria!

    Ok I have HIPAA compliance for all my forms, so does that mean I don't need to add encryption on top of that?

    How does it work differently to form encryption please?

  • Profile Image
    Answered on September 10, 2019 at 03:49 AM

    That is correct, HIPAA encrypts all data and no additional encryption is needed/possible. Regarding the difference, you would not need any key to decrypt responses. All data will be available to you in your account. Also, with HIPAA you may use PDF and other reports features: 

  • Profile Image
    Answered on September 10, 2019 at 04:36 AM

    Aaaah Ok, brilliant! Thank you for clearing this up and replacing my angst with joy!