- HippoDaddyAsked on March 25, 2016 at 08:19 PM
I have a client who needs a basic application form for employment on his site to pre-screen truck drivers.
He will collect basic info including name, birth date and ss# plus other information about driving records etc. No credit card payments or anything else.
We are looking for security over anything else.
I have looked into your encryption and it sounds good, but I don't like the idea of the client having to login to JotForm to retrieve the info.
What options are available?
I would like a form that would encrypt once they hit submit and basically send the form but stay encrypted until the receiver opens the email and types in a secure password specific to the account.
The form is built in my account, but not live/loaded until I know what we can or cannot do. We will not load unless we have the approval to do so and the security to transfer confidential information.
Your comments are appreciated... and maybe I cannot gather this type of info using JotForm in the first place.
The attached photo shows the top portion of the form where the info is more confidential. The bottom part of the form is more about what the driver can and cannot do plus driving history.
- JotForm SupportEltonCrisAnswered on March 25, 2016 at 11:19 PM
We have a client-side encryption feature. This feature will make your form submissions encrypted before they are submitted to JotForm servers, so the encryption is done within the user browser. Nobody except you can access your data. Notifications will only alert you when an encrypted response is received, and you can use your private key to read them. Data are not included in the email. Everything about this feature is explained in this article. I suggest reading this to understand more about how secure this feature is https://www.jotform.com/blog/162-Introducing-Encrypted-Forms-The-Ultimate-in-Online-Form-Security.
Please let us know should you have any further questions about this feature. Thanks!
- HippoDaddyAnswered on March 25, 2016 at 11:36 PM
Thank you for the response. I read this article before submitting my questions.
Based on this article, form cannot be accessed unless I allow the customer (for whom I am building the form) to log into JotForm and I do not want to allow the client to do this.
Sounds like I cannot have a secure form sent by encryption and open at the mail itself... I must give access to JotForm... correct?
- JotForm SupportEltonCrisAnswered on March 26, 2016 at 12:54 AM
They do not need to login unless you want them to view the entire form submissions data of the form.
However, for each submission received, your client should get an alert on their email. They then need to click the link on the email to view the submission data. But before that, they have to upload the private key on the encryption wizard before they can see the actual data (You have to provide them the private key file generated by you when you enable the form encryption feature.)
Once the private key is uploaded, close the wizard and it will reload the page. So basically whoever has the private key file will be able to view the data.
Hope this helps!
- ktForms15Answered on November 18, 2016 at 12:12 PMI'm in the same situation as Hippodaddy and I don't want to know the encryption key to safeguard myself from any troubles down the line. My employment application requests the ssn. So I can't have access to that kind of information, only my client can. How can I give them 100% access with an encryption key and 0% access to myself?
- JotForm SupportWelvinAnswered on November 18, 2016 at 01:01 PM
@ktForms15: I have moved your question into a separate thread. Here's the link: https://www.jotform.com/answers/993349. I will answer it shortly after this thread.