PluginOwl

PluginOwl supports this item

Supported

This author's response time can be up to 5 business days.

83 comments found.

I notice there is no discussion about credit card info for this plugin. Do you know offhand if it would be PCI compliant to store credit card numbers as long as they are encrypted?

By default gravity forms does not store credit card info for payment forms. Nor does our plugin support the encrypting of credit card fields , but that doesn’t stop someone from storing card information through other fields. However , PCI compliance requires more than just encryption which is why we implement strong access controls and other safeguards. Still there is no “default “ for compliance and each implementation is unique in application and should be set up to follow those guidelines for your application as required by the PCI standards. The PCI regulations are really what you would want to look at to see what would be required to store card info in your use case.

Encryption and access control are just part of the solution in most PCI requirements of sch storage

The installation process is quite complicated. It would be great if you’d make a video for users with only a small experience within WordPress. Also a few graphics and cleaner dashboard information within WordPress would help to understand better how this plugin works. Also having that plug-in in German would be nice.

Thank you for that plug-in. Looking forward to seeing how you evolve your plug-in.

Thank you for the feedback. We are strongly looking into creating some video tutorials in the future.

Herdl

Herdl Purchased

Is there a way for encryption to remain applied and the fields able to be exported, unencrypted, by whitelisted users? Currently they seem to export as blank fields

Herdl

Herdl Purchased

Thanks for your previous answer – that solved the problem. I have another related question: in the form view for restricted users, all the data fields are encrypted which is great. However, there’s a link available to view file uploads which we would want to be encrypted. Is it possible to encrypt the file uploads too?

Currently at this time the plugin does not offer file encryption, but it DOES have some things that you can do to keep sensitive files off the server entirely.

If you check out the settings page there are the following options:

“Delete Only File Uploads After Submission” “Attach File Uploads to Notification Emails”

Using these options you can add uploaded files as attachments to specific e-mail notifications for a form and have them auto deleted from the server after a submission and after notifications are sent etc. This allows you to send yourself or whoever the file(s) and then not have them on the server at all.

There is also “Delete Entries After Submission” ..which gets rid of the entry altogether including files after notifications are sent etc.

We have put some thought into encrypting uploaded files but it would likely require users to view the files through the gravity forms interface or another custom interface as any external file access wouldn’t perform decryption. ..This is something we are still considering but there is no current timeline on development.

Herdl

Herdl Purchased

Thanks for the reply on this

by
by
by
by
by
by