Account suspended: Collecting Login Credentials

  • Profile Image
    Todd Scheuring 
    Asked on March 05, 2021 at 12:05 AM

    Hello! My account was suspended because of phishing concerns. I added a username and password field in a form which i assume triggered the suspension. I promise it's a legitimate reason and there's no malicious intent! We're building a form to collect medical provider application information. Part of the application process is the option for providers to add their NCQA login information so that our team can login to their accounts and automatically fill out the rest of the application form for them. This is a common practice among medical credentialing services.

    If possible, I'd love to be able to use Jotform for this project, but if this is against your policies I understand too.



  • Profile Image
    Answered on March 05, 2021 at 04:50 AM

    The form was found on your account (toddscheuring) as suspicious of phishing activity because you're collecting user credentials.


    Gathering this type of data violates our Terms of Use.

    Asking for an access code to conditionally show/hide fields within your form is okay. However, you should refrain from using "password" as your label to avoid being flagged by our phishing detector. Kindly change it to something similar, like an "access code". Other than that, no other kinds of passwords or user credentials are allowed to be collected.

    We’ve removed the offending field on your form and lifted the suspension on your account. Please refrain from making new forms that are against our terms to avoid this kind of inconvenience.