When people upload files using your forms, we store these files on our secure servers. We give them URLS that are impossible to guess. An example would be something like this:
It is virtually impossible for someone to guess the large random number in this URL. Additionally, we use SSL so it is also impossible to sniff it from the network traffic.
For 99% of cases, this is a convenient and secure way to store files. For example, we can show uploaded pictures in the notification emails you receive.
The only problem is that sometimes the files contain really sensitive information such as scanned IDs and personal identifying information. To address these situations, some users have asked us to make sure that the uploaded files are only accessible when they are logged into their JotForm account at the same time.
With security as one of our top priorities, we’ve implemented this new feature to increase protection of files uploaded to forms. Now, you can enable this feature on your account settings to instantly restrict your uploads to only be accessible while you are logged in.
You can edit this setting here.
You can use file upload forms to collect files submitted by others.