-
bhackett75Asked on April 20, 2015 at 1:13 PM
Hello,
We are working with TROY University on marketing efforts and are utilizing JotForm for lead generation data capture on 2 marketing landing pages we've developed. They requested information about the company that is hosting the data. Specifically, they need a data security assurance document that describes how you are handling the data for these prospects as well as your security practices and policies. We sent them the link to your privacy policy (http://www.jotform.com/privacy/) and they said that was helpful, but what they need in addition to is 'a SOC 2 or SOC 3 audit in addition to PII policy'. They said they can/will sign a NDA if needed.
They are anxious to receive this, so your timely response would be greatly appreciated.
thanks and please let me know if you have any questions or concerns.
Page URL: http://www.troy.edu/spirit/ -
BenReplied on April 20, 2015 at 2:30 PM
I am not personally familiar if our company has these data or not, so I will raise this to proper people and they will reply back to you with the details.
Based on a quick search I have found these links to answer what the documents actually are:
Service Organization Controls (SOC): https://en.wikipedia.org/wiki/Service_Organization_Controls
Personally Identifiable Information (PII): https://en.wikipedia.org/wiki/Personally_identifiable_information
I am not sure when you have checked this, but we have recently had a change in our Privacy Policy due to addition of Safe Harbor certification details - which might give you a bit more details to the data that you are looking for.
-
bhackett75Replied on April 23, 2015 at 4:58 PM
Hello -
I was wondering if there was any update with gathering the information our Client, TROY University has requested. Specifically, they need a data security assurance document that describes how you are handling the data for these prospects as well as your security practices and policies. We sent them the link to your privacy policy (http://www.jotform.com/privacy/) and they said that was helpful, but what they need in addition to is 'a SOC 2 or SOC 3 audit in addition to PII policy'.
Thanks again for your assistance
-
BenReplied on April 23, 2015 at 6:06 PM
Update (April 19, 2018) HIPAA is available for our Gold and Silver plans.
https://www.jotform.com/hipaa/
Unfortunately we do not have these documents available and all I can give you is the link to this thread: is JotForm HIPAA Compliant?
While it is not giving you the info shown within SOC2, SOC3 and PII it will give you additional info about JotForm.
At this time there is no other documentation to take a look at, but as soon as we add, we will add it to Privacy Policy page.
Even thought we do not have them, I must tell you that we take security and privacy very seriously and as such, we do everything with these 2 in mind and never without them.
-
TLHaydtReplied on October 25, 2016 at 4:53 PM
Any update on this ?? Is there a SOC2 now available?
-
Kiran Support Team LeadReplied on October 25, 2016 at 10:40 PM
Unfortunately, there is no update in this regard. We request you to take a look at our Privacy Policy page for any information regarding the data security. As suggested by our colleague in his earlier response, please refer to the link to the thread is-JotForm-HIPAA-Compliant for more information on security.
Hope this information helps!
-
RoseReplied on April 13, 2018 at 10:05 AM
Great news! JotForm now offers HIPAA compliance. This means users in the healthcare industry can use JotForm to collect sensitive patient information through consent and onboarding forms, medical history updates, online bill payments, and prescription refill requests.
HIPAA-compliant forms require a Gold pricing plan, which is only $99 a month or a Silver pricing plan, which is $39 a month. A business associate agreement (BAA) is also available upon request.
For more information about our HIPAA-compliant forms, visit www.jotform.com/hipaa.
-
tina JotForm DeveloperReplied on April 19, 2018 at 3:00 AM
Update: HIPAA is available for Silver plan as well.
-
Scott JotForm SupportReplied on October 17, 2022 at 8:25 AM
Hello bhackett75,
Thanks for continuing to use Jotform. We have great news for you. We’ve recently achieved SOC 2 Type II compliance for our Enterprise product. At Jotform, we’re committed to providing the highest level of data security, so our users know their information is in good hands. In September 2022, we received our audit report on SOC 2 compliance from an independent auditor, ensuring that we meet the latest security standards. This report shows our Enterprise customers how we designed and independently tested our security controls, so they are confident that their data is secure. Please note that you must upgrade to Jotform Enterprise to be covered by this newly achieved compliance.
If you are currently not a Jotform Enterprise customer, please contact our team and a representative will reach out to you with details.
- Templates
- Integrations
- INTEGRATIONS
- See 100+ integrations
- FEATURED INTEGRATIONS
PayPal- Slack
- Google Sheets
- Mailchimp
- Zoom
- Dropbox
- Google Calendar
- Hubspot
- Salesforce
- See more Integrations
- Products
- PRODUCTS
- Form Builder
- Jotform Enterprise
- Jotform Apps
- Store Builder
- Jotform Tables
- Jotform Inbox
- Jotform Mobile App
- Jotform Approvals
- Report Builder
- Smart PDF Forms
- PDF Editor
- Jotform Sign
- Jotform for Salesforce Discover Now
- Support
