Skip to main content

Security & Data Protection in Array

At Array, protecting your data and your reputation is our highest priority. We use advanced industry-standard technologies to ensure your data is stored, processed, and transmitted securely.

Updated over 3 months ago

We follow globally recognized legal frameworks and security protocols, so whether you’re collecting sensitive internal data or client-facing submissions, you can trust Array to keep it safe.

Our Core Security Measures

Array employs several protective methods to ensure end-to-end security:

✅ 256-bit SSL Encryption

All data transmitted through Array is protected using 256-bit SSL encryption, the same level used by banks and top financial institutions.

✅ PGP Email Encryption

For email communications, Array utilizes PGP encryption to protect the content from unauthorized access.

✅ Secure Data Storage & Encryption

Your submission data is encrypted both in transit and at rest. This ensures that even if data were intercepted, it would be unreadable to unauthorized users.

✅ Password Protection

Strong password protocols are enforced across the platform, helping users safeguard their accounts with role-based access control.

✅ CAPTCHA Protection

Array supports Google’s reCAPTCHA to help prevent spam and bot submissions in public-facing forms.

Want to add reCAPTCHA to your forms?
Click here to learn how to implement reCAPTCHA

International Compliance & Certifications

Array doesn't just follow best practices — we’re certified and approved under industry-leading security frameworks:

ISO 27001 Certified

We are ISO/IEC 27001:2013 certified, which means our Information Security Management System (ISMS) is:

  • Regularly audited by an independent certification body

  • Designed to proactively identify, manage, and reduce risks

  • Continuously updated to keep pace with evolving security threats

This certification gives our customers confidence that their data is being handled using globally recognized standards.

G-Cloud 9 (UK Government Framework)

Array is officially listed under G-Cloud Lot 2 (Cloud Software). This approval means:

  • UK public sector agencies can safely procure and use Array

  • Our platform meets strict UK government standards for security, transparency, and reliability

EU-US Privacy Shield

While the Privacy Shield framework is no longer the active mechanism for EU-US data transfers (due to changes in regulation), Array has historically adhered to these principles, and continues to follow the latest legal data transfer frameworks for compliance with European privacy laws.

Device Limiting for Account Control

To enhance data integrity, Array limits the number of devices any one user can access the system from. This:

  • Reduces the risk of shared credentials

  • Helps admins manage user activity and permissions

Learn more about Device Limiting and Permissions

Final Thoughts

With sensitive data at stake, choosing a form platform with enterprise-level security isn't just important — it’s essential. With Array, you're backed by:

  • Certified security protocols

  • Industry-grade encryption

  • Ongoing legal compliance

If you have any further questions or need help with specific security settings, feel free to reach out via Live Chat or our Support Request form.

Did this answer your question?