The alternative choice to encrypted Email!
Show me a demo
Pricing

Web FormSafe — A Secure Alternative For Sensitive Data

Web FormSafe was developed for secure web-based information transactions, without using costly encrypted messaging systems. All the form data submitted to the Web FormSafe are encrypted as metadata in a database and to access this, users receive a notification email with a login link. Authorized users simply login and view, print or delete the submitted data right online*. Only the data you want to keep will stay in the database.

Web FormSafe allows you to stop worrying about PGP or other complex email encryption systems for your website. While PGP is an excellent method for secure messaging between parties that require a high level of privacy for their information, it's not necessarily the best tool for dealing with on-line forms on your website. PGP can be complex to setup, especially if a web server is handling the mailing. This kind of setup requires maintaining a keyring of PGP public and private key pairs on your web server so that it can encrypt and send the message to a single user or multiple users. You also have to staff or hire a person who is familiar with registering and implementing a Public Key Infrastructure (PKI) for both your users, mail system and web server. As you can see, this type of scenario quickly becomes a costly venture. Web FormSafe is an excellent alternative, offering you a simple secure method of retrieving data from your server.

Who should use FormSafe?

Web FormSafe is for companies or individuals who collect sensitive information on web sites from their customers, vendors, or staff, and who would like to have that data safely stored for viewing or processing at a later time. Web FormSafe can be used to collect payments from invoices issued via credit card or to get a credit application from your clients or retailers. Anyone that needs to handle secure information is a potential FormSafe user. Ask yourself this, "Do I collect sensitive data from my website that I wouldn't want emailed over the Internet, even to myself ?"
(Note: FormSafe is not a credit card verification service, you would use the credit card information to process your own transactions in your accounting system.)

FormSafe was designed for use in the following industries and business sectors:

  • Vendors
  • Retailers
  • Automotive Dealers
  • Realtors
  • Banking
  • Lawyers
  • Insurance Brokers or agents
  • Agencies
  • Government
  • Education
  • ...or anyone requiring safe, secure information transfer!

Why is it safe?

FormSafe data is protected from many different angles. Here are a few.

  1. A secure socket layer ensures the data collected from your website is safe while it is being entered.
  2. FormSafe access can only be gained from your domain. (There is no cross site authentication allowed, meaning a potential thief cannot try to logon by simply posting to the login area remotely using an automated password script**.)
  3. FormSafe data will only display forms submitted to your domain. (Even if someone knows the identification number of someone else's form and has access to your domain account FormSafe will not show them that data, only data submitted to your domain will ever be shown to you.)
  4. Simplicity of design. (We followed the K.I.S.S rule in designing our product, with a little help from UML. Yes there are complex algorithms that encode and store the data, but that's all safely hidden away on our server, no one has access to it. FormSafe does not expose any functionality that would compromise the data.)
  5. None of the data can be edited after a successful submission, you get it exactly as is was collected. ***
  6. Your data never goes offsite or is transported un-secure over the Internet*
  7. Only you know your username and password. (Not even we know it, because both are stored using one way cipher technology.)
  8. Only the server that encrypted the data can decrypt it.

How it works

Web FormSafe works by taking form submissions right from a website, and immediately encrypting the information using a symmetric encryption cipher against a variable bit length session key bound to the server that encoded it, and then storing that encrypted data in a database as a type of XML metadata. The form data never leaves the server from where it was collected. You are sent a regular email alerting you to the new form submission for your account, with a link to take you to the login area to retrieve the information.

Our sophisticated COM+/XML/XSL/SQL data engine collects the data and display the forms. We've carefully crafted the entire COM+ object to use business logic from the ASP layer and render the data right to the IIS server context. This allows us to give our clients custom business rules in their web forms without DLL recompilation — simply by editing the ASP code. By eliminating the need to customize the data, rendering objects, and driving the display via XSL, we cut programming time helping our customers reduce development costs.

Custom forms can be created to suit your needs.
*Using the FormSafe with an SSL key will ensure all data privacy is maintained.
**This is not an open challenge either, you will be banned and/or prosecuted if you are trying to do this.
*** Unless you copy it from the administration site to your local computer, in which case we are not responsible in any way for any alterations to the data.
ASP News & Information Source
Web FormSafe ver. 1.1 Copyright ©2003 Prosys Digicom Corp.
Contact info@prosysdigicom.com for more information
Privacy