Your service provider is using Gatheroo because it’s more secure than sharing documents by email. This guide explains the security features in plain language.

Your magic link

The link you receive to your Gatheroo request is unique to you. It’s generated specifically for your request and is not a generic login link.

This means that only someone with your link can access your request.

Data encryption

All information you submit through Gatheroo is encrypted in transit (using HTTPS) and stored securely on Gatheroo’s servers. For requests involving particularly sensitive information, individual fields may use end-to-end encryption – meaning your data is scrambled before it leaves your browser and can only be decrypted by your service provider.

Passcode protection / Two-Factor Authentication (2FA)

If your service provider has enabled Secure Access, you’ll need to enter a passcode before your request opens. This extra step ensures that even if someone else got hold of your link, they can’t access your request without the passcode. Your service provider will set this up to be sent to you either through a separate email or an SMS – it will not be in the same email as the link.

To request 2FA, contact your service provider directly and ask them to enable it for your request.

What Gatheroo can and cannot see

Gatheroo stores your submissions on behalf of your service provider. Gatheroo and its staff cannot see any decrypted information.

Your service provider can see what you’ve submitted. For fields with end-to-end encryption, the data is stored in an encrypted form that requires an extra decryption step. Only your service provider has the ability to decrypt the information you’ve submitted.

Questions about how your data is handled?

Contact your service provider directly – they are the data controller for the information you submit through Gatheroo.

More detail on specific steps

Get back to the main guide