Privacy & Security#

FormBeep is designed from the ground up to protect user privacy. We don’t want to store your data, and we ensure that we only hold onto it for the bare minimum time required to deliver it to you.

Data Retention: The “View and Delete” Model#

Unlike traditional form backends that store a permanent log of all your form submissions in their databases, FormBeep explicitly opts out of data aggregation:

  • Form values are truncated to prevent malicious payloads.
  • Values are stored temporarily in a secure, encrypted vault.
  • Permanent Deletion: Once you tap the button on WhatsApp to read the form submission, the form data is immediately and permanently deleted.

This means you get the convenience of instant notifications without the liability of a third-party permanently storing sensitive customer data.

Origin Validation#

Every form submission is validated against an allowed list of domains. This ensures that no one can take your API key from your website’s source code and use it to spam your WhatsApp account from an unauthorized website.

Make sure you configure your Allowed Domains in your user dashboard!

Infrastructure Security#

  • Edge Network: FormBeep handles processing requests near your users for low latency and high security.
  • Authentication: Your dashboard access and API keys are protected by industry-standard authentication.
  • Connections: All data in transit uses encrypted HTTPS connections. Communication with our delivery partners is cryptographically verified to ensure authenticity.
Backward Plans & Limits Troubleshooting Forward