Security & Compliance


Can I capture sensitive and/or private information on forms?
We allow some sensitive information to be captured, but your account will need to be whitelisted to remove warning banners or alerts.
Data Subject Complaints
Would you like to make a complaint?
How do I make a claim of copyright infringement against a form?
Please refer to our Terms and Conditions for the best way to lodge a claim of infringement
How do I make a data or GDPR request?
To make a request about the handling of your data and account information, please complete this form
Is Paperform HIPAA-compliant?
No, Paperform is not HIPAA-compliant at this time. However, it may be offered on the Enterprise plan in the future.
Is Paperform SOC 2 Compliant?
Yes, Paperform has achieved SOC 2 Type 1 compliance, with Type 2 in progress and ready soon. Request a report at
Paperform Sub-processor List
Here are the 3rd party vendors Paperform rely on to deliver their service to you.
Update for Apache Log4j vulnerability (CVE-2021-44228)
Paperform status regarding Apache Log4j vulnerability (CVE-2021-44228)
What are Paperform's Terms and Conditions, and Privacy Policy?
You can view Paperform's Terms & Conditions here, and our Privacy Policy here
What security measures does Paperform have in place?
Paperform follows industry best standards to keep your information safe, and is SOC 2 and GDPR compliant. This article explains our security measures in detail.
Where can I learn more about GDPR and Paperform?
Read this article to learn more about Paperform and GDPR, including roles and related documentation.
Where can I report people using your services for abusive and malicious behaviour?
If you encounter a form created using Paperform that appears malicious or abusive, report it as soon as you can. We accept abuse reports via email at, alternatively you can use our live chat support widget located at the bottom-right of your screen.