Jform 안전한 온라인 양식
At Jform, our reputation rests on our ability to provide all of our users with the highest form security.
Why is Jform Secure?
256 비트 SSL
Regardless of your plan, all your forms are served across a protected 256 bit SSL (Secure Socket Layer) connection that uses a SHA256 Certificate. It is the industry standard protection. 더 읽어 보기
Easily encrypt your forms to ensure that submission data is transferred and stored in a secure format so no one else can read it. Submissions are encrypted with high-grade RSA 2048 at the user’s computer, then transferred and stored securely on our servers. 더 읽어 보기
Jform is PCI DSS Service Provider Level 1 compliant, the highest security attainment you can have as a business that collects payments from and integrates with credit cards. 더 읽어 보기
Jform은 유럽 연합 시민들의 개인 식별 정보를 수집하는 기업에 적용되는 유럽 연합 일반 데이터 보호 규정(GDPR)을 준수합니다. 더 읽어 보기
Jform is compliant with the California Consumer Privacy Act (CCPA), which, among other things, prohibits the selling of personal information of California residents without their consent. 더 읽어 보기
SOC 2 준수
Jform is committed to upholding all five SOC 2 Trust Service Principles: security, confidentiality, availability, privacy, and processing integrity. We offer a SOC 2 compliance solution to our Enterprise customers. Learn more about how Jform Enterprise protects your organization’s data. 더 읽어 보기
We work with educational organizations to provide transparency about the handling and processing of students’ personal information in our forms, apps, and other products, to ensure compliance with FERPA. 더 읽어 보기
일반 법규 준수
At Jform, we take compliance with all laws that are applicable to our business and our platform seriously, including laws that protect individuals' privacy and data, and we have many measures, practices, and policies in place to ensure our compliance. See the compliance and privacy links on this web page for more information.
In addition to the Captchas that you can use in your forms, we have several other options to protect your forms from spammers. For example, you can choose to allow only one submission per IP or computer, or you can disable your form after a specific time or number of submissions. 더 읽어 보기
양식 개인정보 보호
In your form privacy settings, you can limit access to your data depending on the level of privacy that you choose. You can also disable cloning of your forms or require a login to access a submission (this is by default protected via unique URLs).
Jform은 엔터프라이즈 상품을 평가하고 고등 교육 파트너의 보안과 안전을 보장하기 위해 HECVAT으로도 알려진 고등 교육 커뮤니티 공급업체 평가 도구 키트를 사용해왔습니다. 자세히 알아보기
How can you make your forms even safer?
There are several form security options for your data in Jotform. This makes it easy to choose the level of privacy and security that you want for your forms.
You can easily encrypt your forms to secure and protect your submission data. Simply select the form you’d like to encrypt, verify your account, and create your own custom encryption password. This way, no one but you will be able to access your data. Because you can create and store your password as you see fit, instead of using a randomly generated digital key, you’ll never lose access to your encrypted data.
양식을 암호화하는 방법에 대해 더 알아보세요.
파일 업로드에는 이 기능이 적용되지 않습니다. 귀하의 파일 업로드물을 안전하게 유지하는 방법에 대해 알아보세요.
양식 및 데이터의 프라이버시 설정
Access to form submissions is protected and requires a login to the account that owns the form. However, you can grant access to the people in your organization or make your data completely public. Since you have total ownership of your forms and submissions, access to your data will only be granted with your permission when you use an integration widget or app. Rest assured that we treat your data with the utmost confidentiality.
유럽 사용자 데이터의 EU 서버 보존
You can store your data in the European Union (EU) by enabling the appropriate option in the Data tab of your account settings. After confirmation, your form data will be moved to our European servers in Frankfurt, Germany, run by Google. Once the transfer is complete, you’ll be automatically redirected to eu.jotform.com upon login. There’s no need to worry about the safety of your data. Jform complies with the EU’s General Data Protection Regulation.
Jform 엔터프라이즈와 함께 귀하는 거의 세계 곳곳에 있는 서버들에서 양식 데이터를 호스팅 하기위해 위치추정을 사용할 수 있습니다. 호주를 포함하여 많은 나라에서 이것을 요구하는 법이 있기 때문에 글로벌 비지니스에 매우 중요한 도구가 될 수 있습니다.
You can back up your data with a single click from the Data tab in your account settings. When you trigger a backup operation, we start preparing a single ZIP file that contains the HTML code for your forms, a CSV export of your form submissions, and any uploaded files.
These backups can either be downloaded or stored in our database. If you wish to back up your forms only, it’s also possible to download their source code in zip format and store it in your local storage from the Publish options.
스팸에서 양식들을 안전하게 보존
Jform offers two different CAPTCHA alternatives to make it difficult for bots to fill out your form, while still keeping it easy for form responders. You can either use a basic CAPTCHA or reCAPTCHA, as provided by Google.
We’ve also implemented multiple coding checks within the submission process to analyze if the submission is coming from a person. If spam does get through, our 24/7 support team will help identify the cause and credit your account, if necessary.
For additional spam protection, you can also limit submissions to your form so that only one submission can be made from one IP address, or one computer. If you prefer, you can also enable both for greater protection. Furthermore, you may also choose for your forms to be disabled at a specific time or after a specific submission limit has been reached.
서비스 수준 협약
Jform has a near perfect uptime ratio of 99.9 percent, so you’ll always be able to access your data. You can check Jform’s operational status in real time. Our Jform Enterprise service promises to meet the error response rates, resolution times, and uptime ratios outlined in your specific service level agreement (SLA). If these goals aren’t met, you will receive a partial refund as agreed upon in your signed Enterprise agreement.
What other measures do we take to protect your data?
When it comes to form security, availability, and high performance, we go the extra mile. We do our homework to keep our services secure.
Jform servers are colocated in a cloud-based architecture with Google Cloud and Amazon Web Services (AWS). Google Cloud data centers are hosted in Iowa (U.S.) and Frankfurt (Germany, EU). AWS data centers are located in Virginia (U.S.) and Frankfurt (Germany, EU).
Google Cloud servers host our redundant application and data servers in active-active configuration, and all data is replicated to AWS servers on an hourly basis for backup purposes. This provides platform-level redundancy in addition to the redundancy obtained with multiple servers within a single platform. In case we need to switch from the primary platform (Google Cloud) to the secondary platform (AWS), this architecture helps us recover from a platform-level outage. All data remains in-region, so EU data always resides in the EU.
Hosting Jform on these major cloud platforms also provides us with some extra benefits through implementation of security best practices in areas like hardware life cycle management, physical security, and network infrastructure. Our servers are regularly updated and patched.
Local data residency center locations
만약 귀하가 Jform 엔터프라이즈 사용자라면, 클라우드 전용 서버의 물리적인 위치를 선택할 수 있으며 세계 어디에서도 귀하의 데이터를 호스팅 할 수 있습니다 — 이것은 호주, 캐나다, 영국 및 EU와 같은 곳들에서 데이터 개인정보 보호 규정들과 위치 조건들을 준수하는데 중요합니다. 귀하의 데이터 서버를 집이나 구독자들 가까이 있게하는 것에 상관없이 귀하는 더 나은 보안, 신뢰성 및 사이트 지연을 가질 수 있습니다. 오직 귀하의 엔터프라이즈 계정 내의 사용자들과 관리자들만 귀하의 데이터 서버에 접근할 수 있습니다.
백업 정책/비즈니스 연속성
We continuously replicate your data between multiple servers hosted by our primary service provider, Google Cloud (back up in real time). Additionally, all data is replicated to AWS (our secondary platform) by way of hourly snapshots. Each snapshot is stored for 30 days in the cloud environment. All data remains in-region, so EU data always resides in the EU zone.
통합 인증 (SSO)
Jform 엔터프라이즈 계정으로 귀하는 통합 인증을 사용할 수 있습니다. 제3자 로그인은 보안을 향상시키며 직원들이 귀하의 비지니스를 더 쉽게 운영할 수 있게 합니다. 귀하는 선택할 수 있는 다수의 로그인 방식들이 있으며 사용자 활동을 추적하고 귀하의 계정 보안을 통제할 수 있는 옵션들을 가집니다.
Jform Enterprise supports SAML user authentication and popular SSO solutions such as Active Directory, Okta, Google, and OneLogin.
귀하는 또한 Jform 엔터프라이즈로 내부의 양식들을 보호하기 위해 SSO를 사용할 수 있습니다. 사용자들은 귀하의 양식을 조회하기 전에 인증 받아야 합니다. 그런 방식으로 귀하가 민감한 직원 데이터를 모을 때, 양식을 제출하는 사람의 신원을 확인할 수 있습니다.
최고의 코딩 행위 장려
In addition to implementing features that increase security, we maintain best practices on the back end to ensure that your account remains secure. We monitor sessions to restrict access to your account appropriately, and have constructed Jform so that every account is isolated.
We have safeguards in place to detect common attacks, such as SQL injection and cross-site scripting. Most importantly, we actively review our code for potential security concerns (in addition to evaluating all user feedback) so that we can address any issues as they arise. Our privacy statement speaks to our level of commitment in ensuring your data isn’t misused.
All developed code is deployed to the production environment only after certain procedures, including test runs on staging systems. Our continuous deployment system and development process allow us to rapidly update and patch our system whenever needed.
PCI scans are regularly performed to detect any kind of vulnerability in our publicly available interfaces. Each quarter, internal and external Approved Scanning Vendor (ASV) tests are performed for PCI. In addition to these PCI scans, penetration tests are performed periodically.
We also have a bug bounty program for which we pay outside parties to report vulnerabilities. This ensures that we are the first to know about any bugs. We fix all high-priority issues reported to our bug bounty program as quickly as possible.
We have an outside routing layer from CloudFlare that provides basic filtering to handle and manage any potential DDoS (denial of service) attacks. Security scans are performed periodically as described in the audits/VA/PT chapter. Our servers are configured to allow only the absolute minimum level of access needed to maintain them.
모든 불필요한 사용자, 프로토콜, 및 포트들은 비활성화 되고 감시됩니다. 저희 직원들은 개인 키와 함께 2048-bit 암호화 연결을 사용하여 가상 사설망(VPN)을 통해서만 서버들에 접근할 수 있습니다. 3자 보안 서비스들 외에, 저희의 숙련된 개발 작업 팀은 모든 의심스러운 행동이나 전체 시스템에 대해 지속적으로 감시합니다.
모든 계정 정보는 전송 시 자동으로 암호화됩니다. 귀하만이 양식과 제출자료에 액세스할 수 있습니다. Jform 엔터프라이즈로 귀하의 계정에 다수의 사용자들을 추가할 수 있습니다.
사용자 지정 보안 옵션
No matter what industry you work in, Jform wants to help create the perfect security controls for your needs. As an Enterprise user, you can easily request to enable, disable, or add specific security settings to your local data residency center. Contact our Enterprise team to learn more.