What is JotForm?
JotForm is a free online form builder which helps you create online forms without writing a single line of code. No sign-up required.

At JotForm, we want to make sure that you’re getting the online form builder help that you need. Our friendly customer support team is available 24/7.

We believe that if one user has a question, there could be more users who may have the same question. This is why many of our support forum threads are public and available to be searched and viewed. If you’d like help immediately, feel free to search for a similar question, or submit your question or concern.


  • Profile Image

    Questions about security

    Asked by George Elder  on May 05, 2015 at 06:14 PM

     


    1. Does the 3rd party (you) undergo regular security scans, penetration tests…and are the reports of that work accessible to customers?


    2. Does the 3rd party(you) have any reports on their availability?  What is their uptime for the last 1 year?


    3. Does the 3rd party(you) have security policies, including disaster recovery, we can review?


    4. Does the 3rd party(you) share any data they collect from us with any other organization (internal to their company or external)?


    5. Does the 3rd party(you) provide formal notification when maintenance is performed that could impact the service?


     

     

     

     


     

     

     

    Reports style size font
  • Profile Image

    Answered by raul on May 05, 2015 at 06:59 PM

    1. Does the 3rd party (you) undergo regular security scans, penetration tests…and are the reports of that work accessible to customers?

    Yes, we have bug bounty programs where we pay outside parties for reporting vulnerabilities in our system. As far as I know the reports are not available to the public.

    2. Does the 3rd party(you) have any reports on their availability?  What is their uptime for the last 1 year?

    We have this website: http://jotformstatus.com/ where you can see if there's a major glitch that would impact our availability and you can see here: http://stats.pingdom.com/p9yo4pogtt5d/416987 the statistics of our uptime provided by Pingdom.

    3. Does the 3rd party(you) have security policies, including disaster recovery, we can review?

    You can see our privacy policy here: http://www.jotform.com/privacy/ and our terms of usage here: http://www.jotform.com/terms/ 

    4. Does the 3rd party(you) share any data they collect from us with any other organization (internal to their company or external)?

    I think you should find the answer for this question on the links above.

    5. Does the 3rd party(you) provide formal notification when maintenance is performed that could impact the service?

    Well, we make sure that when a maintenance job is performed there's no impact in our service at all. But, in case it does you would be able to see a post on the jotform status page I shared on my answer for question #2.

    If you have further questions, please let us know.