Skip to main content

How to make my form submissions secure from spammers?

Updated

How to secure your forms?

Our forms solution comes equipped with robust safeguards to prevent fake submissions, utilizing a range of security signals such as IP addresses, geographic data, and other advanced metrics. Plus, we integrate Cloudflare's DDoS protection to ensure your forms and submissions remain secure.

For an added layer of security, we recommend following these best practices when designing your forms.


1. Use CAPTCHA to Prevent Spam

Implementing a CAPTCHA is a highly effective method to deter scammers and spammers from flooding your system with fake submissions. This helps to prevent:

  • The creation of fake contacts that can clutter your CRM.
  • Excessive automated form submissions that overload your infrastructure.
  • Increased costs from automated SMS, email, or other communication updates triggered by fake entries.


To add captcha to your form navigate to forms > custom fields > captcha.

This is particularly beneficial when you have automations in place for sending SMS, emails, or other communication updates. Without it, you risk higher costs from fake contacts being added to your CRM by malicious users.


2. Validate Email and Phone Numbers

Ensure only legitimate users submit forms by enabling email and phone number validation. This helps:

  • Block temporary, invalid, or fake contact details.
  • Prevent fraudulent entries from affecting your marketing and sales data.
  • Reduce unnecessary outreach costs.


3. Restrict SMS Permissions Based on Geography

If your form triggers SMS communications, configure SMS geo-permissions to prevent messages from being sent to high-risk regions.

Managing Geo-Permissions in LC Phone - CRM's LC Phone system manages SMS permissions at the sub-account level. By default, most countries are enabled except for high-risk regions. If you need to modify geo-permissions, contact CRM Support with your Location ID and the list of countries to enable or disable texting and calling.

Certain high risk countries are mentioned below that we keep turned off by default

  1. Somalia (+252)
  2. North Korea (+850)
  3. Cuba (+53)
  4. Syria (+963)
  5. Iran (+98)
  6. Sudan (+249)
  7. Liberia (+231)
  8. Zimbabwe (+263)
  9. Afghanistan (+93)
  10. Yemen (+967)


Best Practice - For optimal security it is a good idea to ONLY ENABLE SMS permission for regions where your actual customers are located. Be cautious when activating SMS in high-risk areas to prevent fraudulent activities.


Key Takeaways

Enhancing form security protects your business from spam, fake contacts, and unnecessary costs. While built-in protections help, adding CAPTCHA, email/phone validation, and geo-restricted SMS permissions further strengthens security. Implement these best practices to ensure only genuine submissions reach your system.