questions regarding the security of our data

  • Profile Image
    rjviggia
    Asked on July 24, 2015 at 02:58 PM

    Hi!

    Quick question, if I'm creating forms for Patient Intake submissions; is the SSL security setting enough to protect the information or do I need to utilize this encryption option as well?

    Thanks,

    Rose



    This is a re-post of a comment on Encrypted Forms and How to Use Them

  • Profile Image
    david
    Answered on July 24, 2015 at 03:44 PM

    Hi,

    SSL should be enough to protect your users as long as you are deleting the submissions once you collect the data from your account.  Here is a bit more in depth guide on using JotForm in a HIPAA compliant manner:

    http://www.jotform.com/answers/333046-is-JotForm-HIPAA-Compliant

    When collecting sensitive data, it never hurts to use more security.  Keep in mind though, if you lose your encryption key, you will lose the data associated with it. Which is why I am hesitant to recommend the encryption feature.

    If you have any further questions, let us know and we will be happy to help.

  • Profile Image
    Andrew 
    Answered on April 21, 2017 at 02:50 PM

    I know this is an old post. Though I would like to Mention with HIPAA compliance that SSL is not good enough. If you are using patient information you must have it encrypted when transferred even with SSL.