You already know that 123FormBuilder delivers powerful form building tools. With 123FormBuilder Compliance Cloud, you can take the capabilities and security of your forms, data and workflows to another level. This paper explains how our highly secure system protects your data in multiple ways, letting you focus on doing business rather than securing your information.

Combining Tools You Can Use with Security You Can Trust

COMPLIANCECLOUD

03

05

07

10

Protect Your Data From the Start with Advanced Security, Encryption and Scanning

Building the Right Foundation: The Most Secure Infrastructure Available

It Takes A Village: Comprehensive Compliance and Policy Protection for Your Team

Optimizing Internal Security at123123FormBuilder

TABLE OF CONTENT

HIPAA Compliance Ensures Secure Data Is Never Exposed

TTo remain HIPAA compliant and eliminate any potential threat to electronic protected health information (ePHI), we never add ePHI fields, even encrypted, to any notification or confirmation emails. This ensures that protected information won’t reach an uncontrolled environment where it could be exposed to security threats.

Advanced Encryption Standard (AES) 256 bits Exceeds Requirements

Data encryption is not just a feature, but a must-hData encryption is not just a feature, but a must-have for any organization dealing with secure information. The level of encryption is what really matters, so Compliance Cloud protects client data with an Advanced Encryption Standard (AES) of 256 bits, which meets or exceeds current security and encryption standards.

Security starts with encrypting data, preventing it from exposure and constantly scanning for possible threats.

Protect Your Data From the Start with Advanced Security, Encryption and Scanning

03

Identify Issues Fast with Automated Scans

We use automated verification and regular monitoring processes to flag any possible security issues immediately, so they can be evaluated right away and addressed as necessary.

Virus Scanning Keeps You Safe

All files uploaded through our platform go through a security scan that prevents potentially unwanted or harmful files from landing on our clients’ servers. This fully protects client infrastructure from unknown files.

04

Single-Tenant Installation Secures Your Data and Improves Monitoring

Each client receives a single-tenant installation that includes Each client receives a single-tenant installation that includes dedicated infrastructure for hardware and computational power availability, as well as dedicated databases and operational software instances. Single tenancy for data storage helps us provide appropriate infrastructure for every client while keeping all client operations completely separate. It also supports better monitoring for security threats and contains any potential threat to a specific instance, prto a specific instance, preventing any such issue from affecting other clients’ infrastructure.

A Robust Firewall Protects Your Properties

Our Web Application Firewall (WAF) protects client websites, landing pages and any other channels that might be used to host a data collection form. The firewall secures the entire web application from end to end, protecting you at every step of the process..

A secure setup that’s protected from every angle keeps your information as safe as possible with 123FormBuilder.

Building the Right Foundation: The Most Secure Infrastructure Available

05

SSL Certificates Ensure Form Security

We secure all professional and enterprise forms using SSL certificates, which are available both for forms and workflows hosted on our domain and for users that store data collection forms on their own domain names.

06

A Powerful Password Policy

Our system requires strong passwords with at least 8 characters and a combination of letters, numbers and special characters. By default, users are prompted to change passwords every 90 days for enhanced security.

Protect Data with 20-Minute Auto-Logout

UsersUsers will be automatically logged out of your platform after 20 minutes of inactivity, ensuring that even if someone leaves a workstation unattended, no potentially harmful actions can be taken. The 20-minute limit aligns with industry standards that aim to prevent unauthorized access without affecting productivity.

Your data security is only as good as the team handling the data every day. We provide extra tools to ensure your team keeps data secure, always.

It Takes A Village: Comprehensive Compliance and Policy Protection for Your Team

07

Brute Force Prevention Thwarts Would-Be Hackers

PPotential attackers often try to access your systems by making as many login attempts as possible. We prevent this type of “brute force” attack by limiting login attempts to five. If a user exceeds five login attempts, we’ll notify your administrator and the account owner by email and reset the login information and password.

Limit Access with Granular Permissions

Because 123Because 123FormBuilder is a cross-functionavl platform, different types of users might need access to different forms or different parts of the solution. It’s easy for administrators to grant granular permissions to platform users based on their needs and responsibilities, setting up an additional level of security for your system.

Customize What You Track with Our Activity Log

Our activity log is constantly running in the background and enables you to pull up information about any aspect of platform use at any time. Each client can set up a custom log to track form submissions, approvals, notifications and any other information that might be needed.

08

Restrict Access with Authentication

Require authentication with a username and password to ensure your forms and workflows are accessible only to those who need to know.

Enhance Security with Multi-Factor Authentication

Set up multi-factor authentication to enhance platform reliability and provide an additional layer of security for all of the data and workflows you process. In addition to providing their password, users will need to enter a special code (which can be sent to a phone, tablet or other device) to verify their login.

Simplify Operations with Existing Identity Management

You already have security in place. Why reinvent it? We integrate with your existing identity management providers, such as Azure Active Directory, Google and others, to provide a secure, seamless experience for users.

09

Meeting the Top Standards for Data Security

Compliance Cloud is certified ISO 27001, 9001, 27017 and 27018 compliant, confirming that the infrastructure for our platform delivers the highest level of data security in the industry.

Comprehensive NDAs, Redundant Backups and Third-Party Scans

AllAll of our employees sign mandatory non disclosure agreements (NDAs) binding them to never disclose or use any client information. Redundant backups ensure that even in the unlikely event of a data loss or breach, all of your data can be re-loaded and made available for your use in a very short period of time. Our entire office infrastructure is secured by multiple systems and backups, and we run periodic scans to guarantee that none of our internal dof our internal devices are vulnerable to possible breaches.

When it comes to our internal systems and processes, we make sure everything we do is as secure as possible. This protects your data and our data too.

Optimizing Internal Security at 123FormBuilder

10

IP-Based Filtering and Security Perimeter

IP-based user filtering pIP-based user filtering protects your entire infrastructure by limiting access to information to users in specific locations. This prevents access for both employees and external users from any unprotected device or network. A security perimeter is only as strong as its weakest link, so limiting access to information ensures that your highly secure network will not be compromised by a weak external access point. These features can be enhanced can be enhanced to include file download protection, preventing unauthorized users from downloading any data.

Comprehensive $1 Million Insurance

Ensure your data and systems for up to $1 million as an add-on to the Compliance Cloud plan.

Secure infrastructure and processes keep your data secure. Make the most of your data and keep it safe with the security options available to you through Compliance Cloud.