Skip to main content
Version: 5

GDPR and Gravity PDF - How Gravity PDF uses your data.


The General Data Protection Regulation (GDPR) (EU) 2016/679 is a regulation in EU law on data protection and privacy for all individuals within the European Union. It also addresses the export of personal data outside the EU. The GDPR aims primarily to give control to citizens and residents over their personal data and to simplify the regulatory environment for international business by unifying the regulation within the EU. Source: Wikipedia

The Gravity PDF plugin does not collect or store personal data. It's an add-on/extension for the Gravity Forms plugin which can be used to collect and store personal data (see Gravity Forms GDPR recommendations). Here's some helpful information about what the Gravity PDF plugin does and does not do in regards to the data captured using Gravity Forms:

  • The plugin generates PDF documents on your server using the data collected via Gravity Forms. It does NOT transmit that data to an external source for any reason.
  • The plugin can automatically attach the generated PDF to a Gravity Forms Notification email when configured to do so. This functionality is disabled by default.
  • The plugin generates PDFs on demand and these are not permanently stored on your filesystem. See our documentation on PDF Security for more information about why a PDF might be temporarily saved to your filesystem.
  • As of Gravity PDF 5.1, Signed PDF URLs can be used to allow logged out users to view a PDF and does not use IP-based security.
  • The plugin does NOT create, edit or delete the data you collected using Gravity Forms.
  • By default, the plugin does NOT send any telemetry about your website back to

Under some circumstances the Gravity PDF plugin or premium extension(s) can send data externally:

Should you have any questions about the Gravity PDF plugin and the GDPR, please email