Make the forms HIPAA compliant

ElfsightBot · August 22, 2022, 11:25pm

Helga · October 10, 2022, 12:00am

Folks, our former Wishlist portal, where our users shared their requests and suggestions, was transferred to this forum. You’re most welcome to vote, add new ideas, and leave your comments here — we surely will consider them all!

Original Votes: 2

Caleb1 · February 14, 2024, 6:07pm

This would be great! Currently have to use JotForms for our clients.

Max · February 14, 2024, 6:13pm

Hi @Caleb1

Thanks for sharing your feedback with us!

Unfortunately, the solution hasn’t been found yet, but we’ll keep you informed about any changes in this thread

iammasterweb · October 5, 2025, 1:09am

Hi Team,

Is it possible to end-to-end encryption on individual forms that require an access code (set by an administrator) to view submission data? Maybe it could be combined with this wish list, Make the forms HIPAA compliant - #4 by Max , and others for compliance to Data Protection Regulations?

-mw

Max · October 6, 2025, 2:00pm

Hi there, @iammasterweb

Thank you for the feedback!

While we don’t have any certificates to prove HIPAA compliance, I’d like to say that we take privacy measures very seriously. We store encrypted information from the froms on protected server disks in Google Cloud Platform.

By clicking the Submit button the user agrees to share their data, which is accessible only by the widget owner and is not processed by Elfsight in any manner. Additionally, you can include a Consent checkbox in your widget settings to ask the users for their consent before they submit the data.

However, I agree that it would be great to make our forms HIPAA-compliant, and we’ll try to consider this opportunity in the future

iammasterweb · October 6, 2025, 2:33pm

Hi Max,

If the forms were to become GDPR-compliant, or compliant to a stronger Global Data Protection Framework/Regulation that includes HIPAA compliance, that would be even better. Maybe, I should have stated this from the initial post. I just wasn’t sure if there were any other wishlist requests for other Global Data Protection Frameworks/Regulations.

Smalls businesses (SMB) in particular need the ease of staying compliant, and proving they are compliant wherever they are operating on the Globe. So as it relates to End-To-End encryption of individual forms, and being able to use an access code (known only to an SMB administrator), my preference is for at least GDPR compliance, HIPAA only covers Health data in the US - https://hipaauniversity.com/blog/hipaa-vs-gdpr-what-sets-them-apart/

And, while I’m sure Elfsight takes privacy seriously, there are use cases for SMBs that require an extra layer of Data Protection, especially when using third party services. In the end, it’s just a wish, as I prefer to use Elfsight Forms, rather than another.

-mw

Topic		Replies	Views
End-To-End Form Encryption (HIPAA compliance) Contact Form Gathering-Feedback	3	62	October 6, 2025
End-To-End Form Encryption (HIPAA compliance) Appointment Booking Gathering-Feedback	1	32	October 6, 2025
GDPR compliant contact form General Questions form-builder	28	511	December 7, 2022
How to Integrate Your Form Builder Widget with Zapier Help Center form-builder	0	25	February 17, 2026
Email copy of the form to the person completing it Form Builder Released	13	379	July 10, 2023

Make the forms HIPAA compliant

Related topics