Security and compliance - Formsure

Our users trust us to keep their data safe and secure, a responsibility we take very seriously. If you have any questions or concerns about this, please get in touch

Vulnerability Disclosure

If you would like to report a vulnerability or security concern regarding any product, please contact [email protected] We will verify the report and take corrective action as soon as possible, then notify our users and the relevant authorities of the issue.


General Data Protection Regulation (GDPR)

We use industry best practices for security and privacy, and have vetted all third-party processors we employ for compliance as well. Data controlled by our customers and provided via our API is ultimately our customers' responsibility under the GDPR, but we provide tools such as data retrieval via our GROQ query language, custom data retention policies, and APIs for permanent data deletion, as well as strict security practices, which allows our customers to remain compliant as well.

AWS Service Capabilities for GDPR


Amazon Web Services (AWS), which hosts, undergoes regular independent audits for a range of standards including ISO 27001, ISO 27017, ISO 27018, SOC 2, SOC 3, CSA STAR, EU-U.S. Privacy Shield, HIPAA, and PCI DSS.FAQ

Corporate Security

Disclosure Policy

If a security issue or data leak is discovered, we will notify the affected users and relevant authorities as soon as possible, in line with current regulations. We also publish live reports of operational issues on our status page, which supports email notifications as well.