Social Security Number Collection on Website

  • Profile Image
    Dave Belyea 
    Asked on October 23, 2020 at 02:49 PM

    Hi, we're building a WordPress website for a client and we were thinking of using JotForm for an employment application.

    The employment application does request a SSN. We'd like to iFrame in a JotForm or similar and have data pass over to JotForm in a secure and protected way and have database secured on your side.

    Is this possible?


  • Profile Image
    Answered on October 23, 2020 at 08:39 PM


    You can collect Social Security Numbers for legitimate activities using JotForm. However, to prevent the misused of JotForms for identity theft, our Terms mention that SSNs are considered a Phishing activity.

    When you do request SSN, our automated phishing detector will most likely flag the form and suspend the account. If this happens you must contact support to whitelist the form and reactivate the account, explaining the purposes of the form.

    Below are some of the businesses we recognize to require a Social Security number for legitimate purposes:

    1. Insurance companies

    2. Credit card companies, lenders, and any other company receiving a credit application from you

    3. The three main credit reporting agencies: TransUnion, Equifax, and Experian

    4. Any company that sells products or services that require notification to the IRS, including:

    - Investment advisors

    - Banks

    -Real estate purchases

    -Financial transactions over $10,000, such as automobile purchases; and other financial transactions

    Nevertheless, you must know that since we do store the information in your account, anyone with access to it would also have access to social security numbers. So, in the event of a security breach of your account this could be an issue.

    So, having this in mind, we encourage you to follow this recommendation:

    Add a sort agreement and/or an e-signature field to the form, so your customers will agree to provide their SSN along with personal info.

    Here are some widgets you can add to the form (signature fields): 

    You can also add this Terms of use widget (for the agreement) 

    In conclusion: If your purpose is not to collect SSN from the general public, but from your own customers; if your business is among the list above and if you follow the recommendations; then all this will surely make your forms not to be considered as guilty violating our Terms of Use.

    Let us know if you have any questions.