questform

Answer security questionnaires with answers you can defend.

questform drafts every answer from the evidence you already have — your prior questionnaires and policies — cites the exact passage behind each one, and flags any answer that claims more than your evidence proves. Review, adjust, and send in minutes instead of hours.

Every answer cites your evidence

We draft only from the prior answers and policies you paste in, and show the exact passage behind each answer. Nothing is invented.

It flags where you'd over-claim

Security reviewers push back on vendors who overstate. questform marks any answer that claims more than your evidence proves, so you fix it before you send — not after they catch it.

Honest about what it can't answer

When your evidence doesn't cover a question, questform says so and leaves it to you, instead of filling the cell with something you can't back up.

See it on a real questionnaire

See the full sample →

Three answers from a real questform run on an illustrative evidence set — a grounded answer, one flagged for over-claiming, and one with no supporting evidence.

Do you maintain an inventory of subprocessors and make it available to customers?

Medium confidenceMay over-claim — verify

We maintain an internal inventory of subprocessors that is reviewed during vendor onboarding. However, we cannot confirm from available evidence that this inventory is made available to customers upon request.

Cited: Policy — Vendor Management

Is all customer data encrypted at rest?

High confidence

Yes. All customer data is encrypted at rest using AES-256. Encryption keys are managed in a dedicated key-management service and rotated annually.

Cited: Policy — Data Protection

Do you perform background checks on all employees before hire?

Low confidenceNo evidence — answer this yourself

Your submitted evidence does not cover this question. Draft this answer yourself, then add the supporting evidence.

How it works

  1. Paste the questionnaire you need to answer

  2. Paste your evidence — prior answers, policies, anything that backs you up

  3. Get a reviewed draft: every answer cited, scored, and flagged. Export a clean CSV.

Pricing

Per questionnaire

$199

One questionnaire, fully drafted from your evidence: a review page with every answer, its cited evidence, a confidence score, and an over-commitment flag, plus a clean CSV export. No subscription.

Answer a questionnaire — $199

FAQ

What does questform actually do?

You paste the questionnaire you need to answer and the evidence you already have — prior questionnaire answers, policy excerpts. questform drafts each answer using only that evidence, cites the exact passage behind it, scores how well the evidence supports it, and flags any answer that claims more than the evidence proves. You review and export.

Does it verify my security controls?

No. questform checks each drafted answer against the text you submit — it does not inspect your systems or confirm a control is in place. It's a drafting and review tool, not an audit, and you are responsible for the answers you ultimately send.

Where do the answers come from?

Only from the evidence you paste. If your evidence doesn't cover a question, questform tells you and leaves it blank rather than inventing an answer.

What is the over-commitment flag?

Security reviewers push back on vendors who overstate. When a drafted answer would claim more than your evidence supports — 'all data' when your evidence covers one system — questform flags it so you can soften it before you send.

What do I get for $199?

One questionnaire fully drafted from your evidence: a review page with every answer, its cited evidence, a confidence score, and an over-commitment flag, plus a clean CSV export. No subscription.

What is your refund policy?

If questform can't produce a usable set of answers, the charge is reversed automatically. If our records show you never opened your delivered questionnaire, we refund within 30 days. See our Terms for details. Questions? Email questform@forage.bot.