Ninja Forms

Ninja Forms

Ninja Forms renders contact forms, payment forms, and multi-step forms on WordPress sites. Scripts handle form submission events, validate user inputs, and may transmit form data to third-party integrations and email services configured by the site owner.

Back to Vendor Library

Overview

Ninja Forms is a WordPress plugin that provides a visual drag-and-drop form builder for creating contact forms, registration forms, payment collection forms, and multi-step lead capture flows. It is one of the more widely installed form plugins in the WordPress ecosystem. Because it handles data submission events and integrates with third-party services like Mailchimp, Salesforce, and payment processors, its data flows extend beyond the host WordPress installation.

What This Script Does

Ninja Forms loads JavaScript on any WordPress page containing an embedded form. The client-side behavior includes:

  • Rendering form markup including input fields, labels, validation messages, and submit buttons, either inline or as a modal
  • Handling client-side validation checking required fields, email format, and conditional logic rules before allowing submission
  • Processing form submission events serializing field values and posting them via AJAX to the WordPress backend, which then routes data to configured integrations
  • Managing multi-step navigation tracking current step state and completed field values through the form's JavaScript state management
  • Triggering third-party integration payloads when form actions are configured to push data to external CRMs, email platforms, or payment processors, these secondary requests may load additional third-party scripts or make API calls from the browser

Ninja Forms itself does not set long-term tracking cookies or transmit data to its own servers for behavioral profiling. The privacy risk profile is determined by which integrations the site owner has configured.

Consent & Compliance

GDPR and ePrivacy Directive: Ninja Forms' own JavaScript is functional — it renders and processes forms the user has actively engaged with. No persistent tracking cookies are set by the core plugin for visitor profiling purposes. However, if the form collects personal data such as names, email addresses, or phone numbers, that collection must be disclosed in the site privacy notice and grounded in an appropriate GDPR legal basis. Third-party integrations configured within Ninja Forms (e.g., Mailchimp, Stripe) introduce their own consent requirements. The ePrivacy Directive does not require consent for functional session handling tied to a user-initiated form interaction.

CCPA/CPRA: Data collected through Ninja Forms forms is personal information under CCPA. The form builder itself is not a service provider — the site owner controls the data. Disclosures in the privacy notice must cover what is collected, for what purpose, and which service providers receive it.

The consent category is functional, as the form plugin delivers user-requested interactive functionality.

Should You Block This Without Consent?

No.

Ninja Forms' core JavaScript is functional to the form interaction and does not conduct cross-site tracking or behavioral profiling. Blocking it would prevent the form from rendering. However, ensure that any third-party integrations triggered by form submission (marketing platforms, CRMs) are disclosed appropriately and that those systems' own consent requirements are met independently.

Visit website

Consent Categories

Functional

Also Known As

ninja formsninjaformsninja forms wordpresswordpress contact formninja forms privacywp form plugin

Industries

Computers Electronics and Technology

Tracked Domains (1)

ninjaforms.comFunctional

Frequently Asked Questions

Is consent required for Ninja Forms on my website?

It depends on the form configuration. Ninja Forms itself is a functional tool, but integrations with services like Mailchimp or payment processors may trigger additional consent requirements. Under GDPR, forms collecting personal data need a lawful basis, and third-party data transmission requires disclosure under both GDPR and CCPA.

What cookies does Ninja Forms set?

Ninja Forms' core JavaScript does not set persistent tracking cookies. It handles form submissions, validates inputs client-side, and transmits data to configured integrations. Some add-ons may use session storage to preserve form progress. The data collected depends on fields configured by the site owner and any connected third-party services.

How does ConsentStack handle Ninja Forms?

ConsentStack detects Ninja Forms scripts on WordPress sites and classifies them under the functional consent category. When functional consent has not been granted, ConsentStack blocks the form scripts from loading. ConsentStack also monitors any connected third-party integrations to ensure proper consent coverage across data flows.

Related Vendors

Google Search
Google Search
Google Search appears on websites through the Programmable Search Engine, enabling custom site-specific search functionality. Scripts load the search widget from Google's servers to render search bars and display results within the host website. Sends search queries to Google's index and may set cookies for search personalization and query history.
Google Maps
Google Maps
Google Maps is the dominant web mapping service used for embedded maps and location features on websites. Scripts load interactive map tiles, geocoding, and Places API functionality through the Maps JavaScript API. May set cookies to remember map preferences and manage API quota.
Google
Google
Google is the dominant provider of web analytics, advertising, and infrastructure tools. Scripts like Google Analytics, Tag Manager, Ads, and reCAPTCHA collect behavioral data, manage tag firing, serve targeted ads, and detect bots. Sets persistent cookies to track users and correlate activity across sites.
Microsoft Power Apps
Microsoft Power Apps
Microsoft Power Apps is a low-code application development platform that enables embedded business applications on websites. Scripts load custom app interfaces from Microsoft's cloud, render form controls and data views, and connect to backend data sources through Power Platform connectors. Sets session cookies to maintain application state and user authentication.
Microsoft Teams
Microsoft Teams
Microsoft Teams is a workplace communication and collaboration platform that can be embedded on websites for chat, meetings, and document sharing. Embedded widgets load from Microsoft's servers to enable real-time messaging, video calls, and file collaboration. Sets authentication and session cookies to verify participant identity and maintain connection state.
Microsoft Viva
Microsoft Viva
Microsoft Viva is an employee experience platform that surfaces on websites through embedded engagement and learning modules. Scripts load content feeds and knowledge cards from Microsoft's cloud infrastructure. Sets authentication cookies for user identity and personalized workplace content delivery.

Manage consent for Ninja Forms

ConsentStack automatically detects and manages Ninja Forms trackers so your site stays compliant with global privacy regulations.

Get started free