PLEASE NOTE: These forums are no longer utilized and are provided as an archive for informational purposes only. All support issues will be handled via email using our support ticket system. For more detailed information on this change, please see this blog post.

Is Gravity Forms Secure Enough for Personal Information

  1. Benjaminmh

    I am building a website for a friend who is a loan officer. He wants a solution for clients to fill out pre-qualification forms online. These forms would include personal information such as income, address, social security number etc etc.

    Is this a secure enough plug-in to be the solution for his needs?

    Posted 12 years ago on Tuesday October 12, 2010 | Permalink
  2. Gravity Forms has no added security features. Your forms are only going to be as secure as your hosting, MySQL and WordPress site is. I would suggest making sure you take steps to harden your WordPress install and look into security related plugins to prevent unauthorized admin access, etc. But it doesn't currently do any data encryption of the form data.

    Posted 12 years ago on Wednesday October 13, 2010 | Permalink
  3. the forms are almost useless withotu security, but AI guess its what yo get for only 39$

    Posted 11 years ago on Monday May 7, 2012 | Permalink
  4. 1) get SSL for your wp-login and wp-admin
    2) get SSL on your page where the form is displayed and any output is rendered (e.g. confirmation page if you output the form's data)
    3) reference and to store the sensitive information fields in the database with encryption
    4) don't send the secure fields in the email notification. Make people login to see the form submissions. From there, they can export, screen shot, whatever humans + computers can do...

    Is that what you're wanting to know how to do?

    Posted 10 years ago on Tuesday June 5, 2012 | Permalink
  5. David Peralty

    Thanks Clifford. Your steps are perfect for most situations and hopefully the people looking for help with this issue will take the time to follow them.

    Posted 10 years ago on Tuesday June 5, 2012 | Permalink