As an administrator, the Admin centre gives you the opportunity to configure global settings for your clients in the Organisation area. This includes adding domains and subdomains for your forms, for example, or granting permission to display standard designs
To ensure that your forms are embedded only on trustworthy websites, you need to add details of the corresponding domains or subdomains to Formcentric. Doing so guarantees that your forms will appear only in web pages on sites that you have authorised, which further safeguards the security and confidentiality of your data.
As an administrator, you have the option of making two-factor authentication mandatory for all users in your organisation. This significantly increases account security by requiring a one-time code in addition to a password, making it much harder for unauthorised users to gain access—even if passwords are compromised.
As an administrator, you can easily check which users in your organisation have set up two-factor authentication (2FA). This helps you keep track of account security and ensure compliance with your organisation’s security requirements.
You can use the CAPTCHA form element to add spam protection to your forms. When you add the captcha element to your form, JCaptcha is activated automatically. You do not need to change any other settings or complete any other registration processes. This option is ready to use instantly and offers a good level of protection for your forms.
Create custom API clients for your Formcentric tenant to integrate with external systems such as your CRM, CMS, or other third-party platforms. This enables automated form data retrieval, seamless data transfers, and workflow integration. API clients provide authentication credentials (Client ID and Client Secret) that allow your third-party systems to connect securely. The API grants read-only access to: All forms - Retrieve form data and metadata All folders - Access your folder structure
In some cases, you may need to temporarily disable an API client — for example, during maintenance or as part of a security review. This guide shows you how to deactivate and reactivate an API client.
For security reasons, you should regularly rotate the client secret of your API client. If you suspect that it has been compromised, you must reset it immediately. This guide explains how to do so.
To permanently remove an API client, you can delete it.
You can find an overview of your current plan limits in the Admin centre, under Plan. This provides you with statistics that show your utilisation of the limits included with your plan. Thanks to this overview, you can keep track of your usage and can respond quickly if you reach a limit.
