Product
Templates
Pricing
Resources

User Guides

Explore tutorials on form-building, calculations, payment, data integrations and more.
Best Practices

Learn to build better forms and leverage them for greater impact on your organization.
Customer Stories

Gather ideas and inspiration from others who automate work using Cognito Forms.
Contact Support

Connect with a team member to receive product support and other assistance.
Blog

Explore feature releases, news stories and the latest from inside our organization.

Ensure Consistent Branding with Your Own Organization Theme

Haley N. | November 14, 2023

Discover the importance of adding an organization theme in your branding strategy. Learn why consistency is key, and how creating, applying, and updating an organization theme can unify your brand image.

Read the Article

Data Collection

Easily gather, format, and validate data through different field types.
Workflow Automation

Build flexible, efficient workflows that help you engage the right people at the right time.
Data Management

Organize, configure and transfer data, and create reports and documents.
Security & Compliance

Stay compliant with HIPAA, GDPR, CCPA and other privacy regulations.
Integrations

Expand functionality through native apps and third-party integrations.
Online Payment

Conduct secure online transactions through your choice of payment partners.

Product

My Account
Dashboard
Support

Build GDPR-Compliant Forms

To collect names, email addresses or other personal data from anyone in the EU, you need to use GDPR-compliant forms and practices.

Cognito Forms can help.

Start My Free Trial

Establish and maintain compliance

Advanced Form

Easily drag, drop, and resize up to 6 fields per line to create the perfect form layout.
Privacy Shield

Cognito forms is certified by the EU-US Privacy Shield.
Data Processing Addendum

Meet the GDPR requirement for data processing with our signed DPA.
Compliant Security

We securely process your data (and your users' data) in compliance with the GDPR. Our Privacy Policy guarantees it.
Built-in Tools

Easily include the GDPR-required encryption, consent fields and links to privacy practices. Learn more.

Please note: We offer tools and information as resources, but we don't offer legal advice. We recommend you contact your legal counsel to learn how the GDPR affects you.

GDPR FAQs

What is the GDPR?

The General Data Protection Regulation (GDPR) is a set of rules designed to give citizens in the European Union (EU) more control over their personal data. It also addresses the export of personal data outside the EU.

Who does the GDPR affect?

The GDPR applies to organizations located within the EU as well as those located outside of the EU if they offer goods or services to Data Subjects (individuals who are the subject of personal data) who live inside the EU.

What is personal data?

Personal data is any information related to a natural person (or 'Data Subject') that can be used to directly or indirectly identify the person. If you intend to collect personal data, you must first obtain explicit consent from data subjects.

How do I obtain explicit consent?

Every Data Subject must give their explicit consent through an active opt-in. An active opt-in requires an individual to give their consent through a clear affirmative action, such as ticking a checkbox. Soft or silent opt-ins (such as a checkbox that's already filled in) should be avoided.

You can easily obtain explicit consent on your form using a Yes/No field:

Add a Yes/No field to your form.
In the field settings, select the Checkbox type.
Make sure to include a message written in clear, easily understandable language (ex: "I agree to the terms and conditions") and set the field as required.

Please note that the GDPR also refers to "special categories of personal data," which require additional security. These include:

Racial or ethnic origin
Political opinions
Religious or philosophical beliefs, or trade union membership
Genetic data or biometric data for the purpose of uniquely identifying a natural person
Data concerning health or data concerning a natural person's sex life or sexual orientation

Refer to the GDPR provisions or talk to your GDPR consultant for specific requirements.

How do I ensure that my online forms are GDPR compliant?

Check out our blog post to read our tips on how to design GDPR compliant online forms. Best practices include:

Obtain explicit consent before collecting personal or sensitive data
Enable data encryption to encrypt all personal or sensitive data at rest
Link your privacy policy to ours
Collect a minimal amount of data and delete when it is no longer required
Allow data subjects to have their information erased or corrected

Pricing

Individual

Pro

Team

Enterprise

^$—_/mo. FREE

Get started

— user

— forms

— entries / mo.

Accept payments

— of storage

^$—_/mo. FREE

Start Free Trial

No credit card required

— user

— forms

— entries / mo.

Accept payments

— of storage

^$—_/mo. FREE

Start Free Trial

No credit card required

— user

— forms

— entries / mo.

Accept payments

— of storage

^$—_/mo. FREE

Start Free Trial

No credit card required

— user

— forms

— entries / mo.

Accept payments

— of storage

Company

About
Careers
Newsroom
Referral Program
Write Us

Support

User Guides
Blog
Request Help
Status

Industries

Church
Healthcare
Human Resources
Information Technology
Higher Education
Local Government
Marketing
Nonprofits
Real Estate
K-12 Education
Restaurants & Catering
Sales
Travel Agency

Templates

Application Forms
Contact Forms
Customer Service Forms
Order Forms
Registration Forms
Groups & Events
Reporting Forms
Survey Forms & Quizzes

Facebook
Twitter
LinkedIn
YouTube
Instagram

Build GDPR-Compliant Forms

Establish and maintain compliance

Advanced Form

Privacy Shield

Data Processing Addendum

Compliant Security

Built-in Tools

GDPR FAQs

Pricing

Individual

Pro

Team

Enterprise