This feature is available to organizations on the Team and Enterprise plans.
Encrypting your entry data keeps it safe and prevents it from being transmitted out of your Cognito Forms account. You must encrypt any form and protect any field that contains sensitive information, such as: Social Security numbers, Driver's license numbers, and other personally identifiable information.
There is no limit to the type or number of fields that you can protect (including uploaded files and entire sections). All of your data will still be easily accessible to you, but safe from malicious outside attacks. Additionally, data encryption will not affect how other features work with your form.
Please note: 1) Encryption will only apply to entries after you enable it, not to past entries. 2) If you have signed a BAA with Cognito Forms for HIPAA compliance, you cannot turn encryption off. 3) You are prohibited from collecting and storing credit card information in Cognito Forms, except as supported by Cognito Forms for processing online payments using secure third-party payment processors.
There are two main components to data encryption: encrypting a form, and protecting individual fields. To get started:
- Select the form you want to encrypt, and open the form builder. In the Form Settings box on the left hand side, check the Encrypt Entry Data? option to instantly encrypt all of the form's entry data at rest.
The form data is now more secure, and impossible for an intruder to decipher. It will also require JSON posts and confirmation redirects to be over SSL.
Protecting a field ensures that the entry data does not appear in notification/confirmation emails, generated documents, or through any other method where data is transferred out of your account. You can even protect a section, which will in turn protect every field within it.
- Once you have encrypted your entry data, all your fields will display the Protect Field? option at the bottom of each field settings box. To protect a field, select this option.
- The field will now have a lock icon next to it, indicating that it is protected.
Keep in mind that when downgrading to a plan that doesn't support data encryption, your form data will no longer be encrypted.
To securely collect passwords through your Cognito Forms:
- Ensure that data encryption is enabled.
- Add a Textbox field to your form, and select Password as the field type. Password fields are always set to Protected.
- Now, when a user types in their password, the characters are masked from view with asterisks: