A true data fortress
Wufoo’s servers live in a SOC 2, Type II audited data center in the United States, with:
- high-end surveillance equipment
- security guards
- biometric recognition
- redundant IP connections and power supplies
- encrypted offsite backups
- …and more top-notch security features.
Best practices in coding
We keep your account secure from the backend too. We monitor sessions to restrict access to your account as appropriate, and have constructed Wufoo so that every account is isolated.
- We have safeguards in place to detect common attacks such as SQL injection and cross-site scripting.
- We actively review our code for potential security concerns, and evaluate all user feedback.
We are bound to our privacy statement, which ensures your data is not misused.
Fighting against spam
Automated spam is a plague for online forms and is a major annoyance to many admins. Our Captcha integration gives you tools to ensure your users are human and our multiple coding checks along the submission process verify that your responses are coming from actual people using a web browser.
We have backups of our backups
Disasters happen, and being prepared for them is critical for happy data collection. We consistently back up in real time, and we take 2 snapshots of your data every 24 hours and store them on site for 2 weeks. (After that, we move them to a safely stored physical backup.)
Securing our network
An outside routing layer provides us with basic filtering to handle any potential denial of service attacks. All network traffic also has to pass through one of our heavily locked-down redundant firewalls. We perform periodical scans, including quarterly PCI scans by McAfee, to look for any potential vulnerabilities in our network or publicly accessible software.