Is JotForm HIPPA compliant?

  • Profile Image
    Asked on October 14, 2015 at 11:05 PM


    I am working on some websites for some Counseling organizations and hope to do more business with other organizations in the Mental Health, Psychology, etc. professions.  Security with form submission is a huge deal and I need to verify if your product is HIPPA compliant.  Can you please provide documentation indicating it is or is not?

  • Profile Image
    Answered on October 15, 2015 at 05:02 AM

    Update (April 19, 2018) HIPAA is available for our Gold and Silver plans. 


    At the moment JotForm does not hold the HIPPA compliance certificate, however we do have features and provisions that will enable you to use our forms in a HIPPA compliant manner.

    Here are the steps you can undertake to ensure compliance;

    1. Always use the SSL (https) version of JotForm site on your browser. Use "" to login to your account, create your forms, look at your submissions and link to your forms.

    2. Edit emails on all forms to make sure no specific information is used on them. We send emails in plain text. So, they are not secure. Only use emails to get alerts to know there is a new submission. Once you receive an email alert, log into the secure JotForm site and then look at the submissions.

    3. If you use the Reports feature only do it with password protection. That will both ask for a password, and it will transfer all data over SSL.

    4. Same for uploads. They are not password protected.

    5. Logout immediate after you are done with the site.

    6. Regularly download submissions and then delete them.

    7. Enable the form encryption feature to encrypt submissions collected with your form

    Please let us know if you will need clarification and further information

    You can also refer to this thread for more information

  • Profile Image
    Answered on April 13, 2018 at 10:03 AM

    Great news! JotForm now offers HIPAA compliance. This means users in the healthcare industry can use JotForm to collect sensitive patient information through consent and onboarding forms, medical history updates, online bill payments, and prescription refill requests. 

    HIPAA-compliant forms require a Gold pricing plan, which is only $99 a month or a Silver pricing plan, which is $39 a month. A business associate agreement (BAA) is also available upon request.

    For more information about our HIPAA-compliant forms, visit

  • Profile Image
    Answered on April 19, 2018 at 04:10 AM

    Update: HIPAA is available for the Silver plan as well.