Data Protection & Privacy

Ensure compliance with US and international regulations.


Cognito Forms complies with all General Data Protection Regulation (GDPR) regulations to ensure we provide our customers in the EU with access to and control of their personal data.

Additionally, we make it possible for our users to create GDPR-compliant forms for doing business with customers in the EU. To ensure your forms can be used by customers in the EU, read this article on how to create GDPR-compliant forms.

Learn more about the GDPR.

US Privacy Shield

Cognito Forms is a certified member of both the EU-U.S. and Swiss-U.S. Privacy Shield Frameworks. As such, we comply with all Framework requirements. This helps ensure proper data protection measures are in place for our customers who engage in transatlantic commerce.

Learn more about the US Privacy Shield.


The California Consumer Privacy Act (CCPA) provides California residents similar rights and protections as those provided in the EU by GDPR.

Cognito Forms complies with all CCPA regulations, while making it easy for users to respond to data portability and access requests as well as data deletion requests.

Learn more about the CCPA.

Learn more about Data Protection and Privacy

See the Help Topic