Is Jotform HIPAA or PCI compliant?

  • Profile Image
    Axel
    Asked on September 22, 2015 at 11:03 AM
  • Profile Image
    Mike_G
    Answered on September 22, 2015 at 11:56 AM

    Please check the link to find out more information on the HIPAA compliance topic:

    Is-JotForm-HIPAA-Compliant

    With regards to PCI compliance, 

     

    Update: JotForm is now PCI DSS compliant. We have PCI Service Provider Level 2 certificate. We'd happy to provide certificate to any users who would need it for their payment gateway. Just contact our support team. 

    Our payment integration API's are provided by PCI compliant services, which means that we do not process the information, it is transferred securely according to a set of standards by the payment service to their servers. Some of the APIs uses methods to collect and encrypt the information. The information is not logged into our servers. Even from our back-end access - we have no access to Credit Card information submitted. Our APIs transfer the compliance to these services through the API call.

    I hope this helps. Thank you.

  • Profile Image
    aytekin
    Answered on August 02, 2016 at 08:57 AM

    JotForm is PCI DSS compliant. We have PCI Service Provider Level 2 certificate.