We’re concerned about your privacy and the security of your data. With Cognito Forms, your form data is safe.

Need a form that is secure?


SSL Encryption

Cognito Forms uses SSL encryption and is always accessed over HTTPS 100% of the time for all users. SSL (Secure Sockets Layer) is the standard for ensuring data is encrypted when being sent to a web server from a browser.

Data Encryption

Protect your form’s entry data with the click of a button. Read more about our Data Encryption feature.


Sign our HIPAA Business Associate Agreement to enable additional security measures, like automatic form encryption. Learn more.


Sign our Data Protection Agreement and use Cognito Forms as part of your GDPR-compliant practices for collecting personal data from users in the EU.

Privacy Shield Certified

We maintain an active Privacy Shield Framework certification so you can transfer data from the EU to the US under the latest data protection requirements.

Hosting Environment

Our highly available, cloud-based, and secure hosting environment uses Microsoft Azure and is both BAA (HIPAA) and PCI (DSS) level 1 compliant.


Our payment processors (PayPal, Stripe, Square) are all PCI level 1 compliant. Your or your users’ credit card data is never transmitted, processed, or stored by your website or by Cognito Forms. Learn more.

About data security

See the Help Topic