The security of the doForms system is based on (i) data transmission encryption, and (ii) Google's App Engine IT infrastructure security.
Data transmission between your mobile devices and the doForms website is encrypted using Secure Socket Layers (SSL3). This protects your data while traveling over the airwaves or Internet. Browsing of data on your doForms website may also be encrypted using SSL/HTTPS. Please be sure to use the encrypted SSL3 connection at https://mydoforms.appspot.com.
You can also have peace of mind knowing that your data and forms are hosted inside Google data centers on top of Google's App Engine IT infrastructure.
Google data centers are designed and built for our applications and don’t include unnecessary hardware or software. This reduces the number of potentially exploitable vulnerabilities. Google guarantees 99.9% uptime and build-in robust disaster recovery, so you don’t even have to worry about natural disasters.
Google App Engine has successfully undergone annual SAS 70 Type II audits which have evolved into the SSAE 16 Type II attestation and its international counterpart, ISAE 3402 Type II. Google App Engine is one of the first major cloud providers to be certified for compliance to these new audit standards.
Third party audits are only part of the security and compliance benefits of Google App Engine. Google protects our customers’ data by employing some of the foremost security experts, by executing rigorous safety processes and by implementing cutting-edge technology.