Certify all form submissions using the Certification API. This ensures that the email addresses you are receiving have been verified using goodforms.com.

Use Axios or any other way of performing CORS-style POST requests to the API to ensure that email addresses never end up in a GET URL.

Use a Content-Security-Policy on your web pages, permitting goodforms.com URL’s to be retrieved and executed from your page