Starting May 25, 2018 GDPR has replaced the Data Protection Directive, which has been in effect across the European Union (EU) for the past 20 years. The goal of GDPR is the enforcement of a standardized data protection law for the entire EU.
To ensure that the protection of personal data remains a fundamental right for EU citizens, GDPR’s aim is to modernize outdated privacy laws. GDPR has the potential to impact any business that collects data in or from Europe.
If organizations are not GDPR compliant, significant fines of up to €20,000,000 or 4% of global annual turnover, whichever is greater, may be levied on them.
With a signed JotForm Data Processing Addendum, ensures the compliant transfer of personal data from data controllers in the EU to data processors in the EU.
JotForm is committed to subjecting all personal information and data received from the European Union (EU) member countries and Switzerland, in reliance on the GDPR, to the GDPR’s applicable Principles.
JotForm makes it easy for our users to show that they use JotForm in a GDPR-compliant way. To make it convenient and easy, we provide a Data Processing Addendum (DPA), which is a self-serve and easy-to-execute document pre-signed by JotForm. It only requires an electronic signature from the user.
Once the DPA is filled out and submitted, it will automatically be sent to JotForm’s legal team for final review. If it is correctly completed, the DPA will then become legally binding. You can provide the DPA to auditors to show that you use JotForm in a way that demonstrates your data is being processed in a manner that meets your GDPR compliance obligation.
For more information, please see the "How to Execute this DPA" section in the DPA below.
The JotForm GDPR compliant DPA is available here.
Please send questions to email@example.com
Find answers to most frequently asked security related questions by our users.