Store sensitive data in HubSpot

To store sensitive information in your HubSpot account, users with Super Admin permissions can turn on the sensitive data setting. Once the setting is turned on, you can create custom properties that store sensitive data, then restrict user access to the properties using field level permissions.

Before you get started

Before you begin storing sensitive data, review the following information, including requirements, limitations, and recommendations related to sensitive data functionality.

• You can only store certain types of sensitive data in HubSpot. Refer to the sensitive data terms page to understand which types of sensitive data you can store and where these features are available. You cannot store personal health information protected under HIPAA, credit or debit card numbers, financial account numbers, wire instructions, social security or national identifier information, or personal information of children under child protection laws.
• Only users with Super Admin permissions can turn on sensitive data. Once the sensitive data setting is turned on, it cannot be turned off.
• Only users with Super Admin permissions can create, edit, or delete sensitive data properties. Partner Admin users cannot create, edit, or delete sensitive data properties unless they are also assigned Super Admin permissions.
• Sensitive data properties are unavailable in certain tools, including personalization tokens, sandboxes, chatbots and playbooks.
• Since any Super Admin can create and view sensitive data, it's recommended to review your list of Super Admins and remove admin access for users who don't need it. In your Users & Teams settings, hover over an admin user, then click Actions > Remove super admin.

Turn on sensitive data

Prior to creating sensitive properties, you'll need to turn on sensitive data in your Privacy & Consent settings, and accept the related terms and conditions. Users must have Super Admin permissions to turn on sensitive data.

Please note: once you’ve turned on sensitive data, it’s not possible to turn it off.

• In your HubSpot account, click the settings settings icon in the top navigation bar.
• In the left sidebar menu, navigate to Privacy & Consent.
• Click Configure sensitive data settings.

• In the right panel, select the checkboxes to specify the categories in which you’ll be storing sensitive data. If you want to store protected health data, learn more about the HIPAA sensitive data beta in this knowledge base article. Refer to the sensitive data terms to understand what types of data can be stored in the categories.
• Click Next.
• Select the checkbox to accept the terms and conditions.
• Click Turn on sensitive data settings.

Create properties to store sensitive data

Super Admins can mark a property as sensitive. By default, data in HubSpot is encrypted in transit and at rest. Marking a property as sensitive adds an additional layer of encryption, application layer encryption, which gives individual accounts and their sensitive data increased protection and isolation. Sensitive data needed for search and reporting are stored in protected environments with highly restricted access. Access to the unencrypted values for sensitive properties is restricted to designated HubSpot applications and user-approved connected private apps. 

• In your HubSpot account, click the settings settings icon in the top navigation bar.
• In the left sidebar menu, navigate to Properties.
• Click Create property.
• Enter the property’s basic information, then click Next.
• To mark the property as sensitive, select Sensitive data.

• If the property will store HIPAA-protected health data (BETA), select the Yes, this data contains protected health information (PHI) checkbox.

• Select which users should have access to view and edit the property's values, either Everyone or Super admins only. If you’ve selected Everyone, it’s recommended to restrict the property’s view and edit access after the property is saved.
• Click Next.

• Finish setting up your property, then click Create.

Manage and use sensitive data properties

Once you’ve created a property to store sensitive data:

• Super Admins can set up field level permissions to restrict view and edit access for the property to specific users and teams. This is highly recommended to ensure sensitive data can only be seen or modified by select users.
• Super Admins can view user actions related to sensitive data property values in the audit log.
• Super Admins can edit or delete the sensitive data property.
• Users with access to the property can update the property’s values manually or via import and workflows.
• Users with access to the property can use the property in HubSpot tools, including CRM records, views, lists, workflow triggers and actions, reports, search, and mobile. Sensitive data will be unavailable in all other HubSpot tools.
• Super Admins can sync sensitive properties to objects that are available for one-way and two-way syncing with third-party integrations built by HubSpot such as Zapier, Salesforce, Zoho CRM, and more. Per the sensitive data terms, if you choose to integrate with or otherwise use third party products in connection with the Subscription Service, you acknowledge that Customer Data hosted or processed by such Third-Party Products would be hosted in accordance with policies maintained by those third-parties.
• If your account allows HubSpot employees access to troubleshoot support issues, HubSpot employees will not have access to view sensitive data property values.

Forms 

With the ability to store sensitive data in HubSpot, you can use HubSpot forms and non-HubSpot forms to collect sensitive information from your visitors confidently. Sensitive data collected via forms will be encrypted and synced into the CRM securely. Any files uploaded via form submissions associated with a sensitive data property will also be considered sensitive.

Only users with the appropriate permissions to view sensitive data will be able to view form submission values and files marked as sensitive. All form submission notifications will also adhere to the sensitive data user permission requirements.

Attachments

With the ability to store sensitive data, you can store files containing sensitive information in tools across HubSpot. Once you turn on the sensitive data setting, attachments uploaded in the below ways will be protected by an additional layer of encryption in HubSpot’s database storage. This will also remove the option to share files externally without authentication, and will disallow HubSpot employees from accessing the attachments.

When added via the following methods, files will be protected:

• Uploaded from your computer on a record in the Attachments section.
• Uploaded on a record via a new note.
• Uploaded on a record via an email from a contact.
• Uploaded on a record in the HubSpot mobile app.
• Uploaded to a file type property.
• Uploaded via a form submission.
• Uploaded via import.

You can control user access to attachments through permissions for each tool. For example, you can restrict access to contacts for specific users who shouldn’t have access to contact files.

Workflows

HubSpot AI tools

HubSpot’s AI tools can help you automate tasks, gather data insights, draft content, and more across the HubSpot customer platform. Only users with Super Admin permissions can turn on certain AI tools, such as AI Assistants.

If you turn on sensitive data, the sensitive properties that you create will not be used to train HubSpot’s AI models. However, other Customer Data within your account may be used to train HubSpot’s AI models. You may opt-out of having your Customer Data used for machine learning by emailing privacy@hubspot.com. For more information, please review HubSpot’s Terms of Service and HubSpot’s Privacy Policy.

Please note: avoid sharing any sensitive information in your prompts. To improve the product, HubSpot logs and stores your prompts, generated language, and usage metrics when you use AI Products. HubSpot shares your prompts with AI Service Providers in order to enable your use of AI Products and AI Service Providers will store your prompts for content moderation purposes. Your prompts will be attributable to you. Your use of HubSpot’s beta AI Products will be governed by our Beta Terms and AI Products incorporated within our Subscription Services will be governed by our Product Specific Terms.

HubSpot’s AI Products are not part of the sensitive data features. Certain AI Products may process sensitive data which you may not have intended to include when generating results based on the prompt entered. These tools include:

• Conversation Summaries
• Conversation Intelligence
• AI Assistant Call Summaries
• Automatic Speaker Mapping
• Automatically Populate Contact Properties

For example, if you discuss sensitive data during a conversation, you should not use the Conversations Summaries tool. While you may not have intended to input sensitive data in your prompt, the Conversation Summaries tool would process all content in the conversation. 

For more information about HubSpot's AI tools, refer to the AI model cards. Avoid using AI tools if you don't want the AI tools to process your sensitive data.

Data Centers

You can store sensitive information in any Data Center that you use. However, once you turn on the sensitive data setting, you won’t be able to migrate to a different Data Center at this time.

Additional resources

For more information about HubSpot’s security program, refer to the HubSpot Trust Center.