← RodyWorks Hub

Encryption

What gets encrypted, to what standard, and what that means for you.

Standard form encryption — included for everyone

Form encryption is a standard option on every account, including Free. Turn it on when you build a form and each submission is encrypted in its entirety with AES-256-GCM (authenticated encryption), keyed by a password run through Argon2id, a modern memory-hard key derivation function. The password is either one you set for the form or a one-time passphrase issued at submission — in both cases it never reaches our servers in plaintext, so the data is unreadable to us at rest.

Encryption is not stewardship

Enabling encryption does not make us the steward, custodian, or reviewer of your content. You retain ownership of — and sole responsibility for — what you collect, the lawfulness of collecting it, and the consents you obtain from respondents. Encryption also cuts both ways: we cannot access, decrypt, recover, or reset encrypted content. If every key-holder loses access, the data is permanently unrecoverable, and we have no ability and no obligation to recover it.

The agreements that govern all of this

Your use of encryption and of the Service as a whole is governed by our Terms of Use (see in particular the sections on your content and encryption non-recovery) and our Privacy Policy. Read those before you start collecting anything sensitive.