Australia Data Server and Privacy Act 1988 compliance

  • Chris Jalilian
    Asked on March 21, 2020 at 2:19 PM

    Is this something I can achieve with JotForm?

    Data must be stored in Australian server and adhere to Australian healthcare privacy laws.

    Thanks in advance.

  • John Support Team Lead
    Replied on March 21, 2020 at 4:21 PM

    Hello Chris - Currently, our standard plans are using either US or EU servers. Jotform has only an Enterprise solution for Australian data sovereignty. That said, we can only set up a dedicated Enterprise server in Australia, but this would require an Enterprise subscription level: https://www.jotform.com/enterprise/faq/

    Regarding Australian healthcare privacy laws (Privacy Act 1988), unfortunately, we only have HIPAA-compliance in place.

    But let me add this as a feature request and see if it can be considered in the future. Though I'm not able to provide an ETA, we'll let you know here once an update is available.

  • Chris
    Replied on March 21, 2020 at 6:00 PM

    Thanks. 
    Could you please explain what is meant by user - in regard to pricing for enterprise. All I want to do is have a form on our WordPress website that patients complete for which the data is encrypted and remains on our domain hosting. 
    thank you. 

  • KrisLei Jotform Support
    Replied on March 21, 2020 at 6:29 PM

    Hello Chris,

    JotForm Enterprise users refer to anyone in your organization who creates forms and accesses form submission data within the JotForm platform.

    "Each user has an individual username and password to log into your company’s JotForm account.

    JotForm Enterprise features two user function levels: User and Admin. You determine if the user is a User or Admin, and each requires an individual username and password credentials.

    A User is limited to creating forms and reviewing submission data that is the result of that User’s forms, only. A User cannot view and edit other forms or submission data.

    An Admin manages the account and they can add/delete users.

    For example, with JotForm Enterprise, you may have two Administrators and 18 Users. This is a total of 20 individuals, therefore you would purchase access for 20 users."


    As for the data encryption and domain hosting, JotForm is HIPAA compliant and data are automatically encrypted, guaranteeing the patient's health information: https://www.jotform.com/hipaa/

    For your additional Reference: How-to-upgrade-to-HIPAA-Compliance

  • Chris Jalilian
    Replied on March 21, 2020 at 7:29 PM
    Thanks for your response.
    1. Is the standard jotform data encrypted?
    2. Can I integrate into WordPress website
    3. Does the data entered from patients remain on my hosted server?
    Thanks
    Chris
    ...
  • Mike
    Replied on March 21, 2020 at 9:15 PM

    If we are talking about regular JotForm plans (Non-Enterprise):

    1. Is the standard jotform data encrypted?

    The data is submitted through an encrypted connection but stored without encryption* in the database.

    However, you can manually enable the encryption feature on a per form basis. Please follow the next link for more information:

    Encrypted Forms and How to Use Them

    * Note that in HIPAA-enabled accounts the data is stored encrypted.

    2. Can I integrate into WordPress website

    Yes, forms can be embedded in WordPress websites:

    Adding Forms to Wordpress.org Version

    How to Embed a Form to Wordpress.com

    3. Does the data entered from patients remain on my hosted server?

    No, forms work through our servers. The data is being submitted to our servers and owned by you. You can manage the data from within your JotForm account.

    You may follow the next link to find out more information about JotForm security:

    https://www.jotform.com/security/

  • Chris Jalilian
    Replied on March 21, 2020 at 10:29 PM
    Thank you.
    1. So the only way to have data stored on my hosted server is to purchase enterprise version?
    2. Have I got it right that if I am the only user creating forms, I would pay for the lowest subscription? The numbers counted are not the number of patients using the form?
    Many thanks for answering my questions.
    Chris
    ...
  • roneet
    Replied on March 21, 2020 at 10:50 PM

    Yes, only the Enterprise plan supports to have data stored in dedicated servers.

    As my colleague suggested, you can enable Encryption if you want to have the lowest subscription or you can enable HIPAA compliance in which data would be stored in HIPAA servers. HIPAA compliance requires a Silver or Gold subscription.

    Please check this pricing page:

    https://www.jotform.com/pricing/

    Thanks.

  • Chris Jalilian
    Replied on March 22, 2020 at 3:29 AM
    Thank you. I see that the first option starts at $79 but is for 3-99
    users. What if there is only one user?
    ...
  • Ashwin JotForm Support
    Replied on March 22, 2020 at 4:31 AM

    Unfortunately it is not possible to have only one user in enterprise plan.

    Please note that Enterprise plan requires that you have at least 3 users and you will be billed annually.

  • Chris Jalilian
    Replied on March 25, 2020 at 6:29 PM
    Thank you.
    What kind of support do you provide to create forms and integrate to
    wordpress? I am familiar with wordpress backend but i'm not a coder.
    Thanks
    Chris
    ...
  • Mike
    Replied on March 25, 2020 at 7:52 PM

    We do not offer development services/support. However, form embedding in wordpress websites should be easy. For example, just add the form embed code to the HTML element, and it will embed the form.

    Australia Data Server and Privacy Act 1988 compliance Image 1 Screenshot 20

  • Chris Jalilian
    Replied on March 25, 2020 at 10:29 PM
    Is there a cheaper way for me to play around with jotform to ensure it
    serves our purpose and then convert to enterprise version?
    Thanks
    Chris
    ...
  • roneet
    Replied on March 25, 2020 at 11:58 PM

    You can sign up with a free account. You can test all the functionalities of JotForm with a free account.

    Please signup with the below URL:

    www.jotform.com/signup

    Australia Data Server and Privacy Act 1988 compliance Image 10

    In the free subscription also you would be able to get all the features. Once you have tested you can go for any plan of your choice.

    Thanks.

  • Chris Jalilian
    Replied on March 26, 2020 at 6:29 AM
    Thank you. Can I then save and import a form from a free account so I
    don't have to do it again?
    Thanks
    Chris
    ...
  • roneet
    Replied on March 26, 2020 at 7:19 AM

    Yes, we can move the forms for you or you can even clone these forms to your new account.

    Guide: https://www.jotform.com/help/42-How-to-Clone-an-Existing-Form-from-a-URL

    Thanks.

  • Chris Jalilian
    Replied on March 26, 2020 at 7:29 AM
    That's great, thanks. If I clone, will the forms be encrypted and stored
    in an Australian server (once I setup enterprise)?
    ...
  • Ashwin JotForm Support
    Replied on March 26, 2020 at 9:25 AM

    Please note that if you clone form, you will have to enable encryption again in form.

    On your question related to storing the data in an Australian server, we have already forwarded your request to our backend team. We will get back to you as soon as we have any update.

  • Chris Jalilian
    Replied on March 27, 2020 at 3:29 PM
    Hi there,
    I received an email about free HIPAA accounts and I subsequently applied. I
    would just like to check that this has been received. Thanks
    Chris
    ...
  • Mike
    Replied on March 27, 2020 at 4:46 PM

    If you submitted an application form at https://www.jotform.com/corona-responder-program/apply/ and saw a Thank You Messages, this means that your application is definitely received. 

    Australia Data Server and Privacy Act 1988 compliance Image 1 Screenshot 20

    The assigned team will review the application and get back to you. Although, this might take time.