Skip to main content

Protection Methods

Google reCAPTCHA v3

Recommended. Invisible, no friction, high accuracy, free tier available.

Honeypot Fields

Zero friction, simple setup, no external service required.

Rate Limiting

Per-IP limits, customizable thresholds, auto-blocking of abusive traffic.

Enabling Spam Protection

1

Open form settings

Go to your form and open the Settings or Integrate tab.
2

Choose protection methods

Enable reCAPTCHA, add a honeypot field, and/or configure rate limits.
3

Save and test

Save your changes and submit a test form to verify protection is working.

Best Practices

  • Use multiple methods together — Combine reCAPTCHA with honeypot fields for stronger protection.
  • Enable reCAPTCHA for high-traffic forms — Forms with lots of public traffic benefit most from reCAPTCHA v3.
  • Add honeypot fields — A hidden field that bots fill out but humans don’t see catches simple bots.
  • Don’t set rate limits too low — Avoid blocking legitimate users; start with conservative limits and adjust.
  • Test after enabling — Submit test forms to ensure real users can still submit successfully.

How It Works

When a user submits your form, Orbit AI applies your enabled protection layers in sequence:
  1. Honeypot — If a hidden honeypot field is filled, the submission is rejected (bots often auto-fill all fields).
  2. reCAPTCHA v3 — Google scores the user’s behavior; low scores are flagged or blocked.
  3. Rate limiting — If the same IP exceeds your limit within the time window, the submission is blocked.
Submissions that pass all checks are processed normally. Blocked submissions are logged for review.

Next Steps

Account Settings

Manage your account and security

Analytics

Monitor form performance