Features

The form plugin that doesn't hold the builder hostage.

The drag-and-drop builder, conditional logic, entry storage, CSV export, notifications, and spam protection are all free. Payments, integrations, and advanced fields are Pro (from $49/year). Each section below is tagged so you know exactly what's where.

Payments Pro

Stripe Checkout and PayPal in Pro.

Hosted Checkout pages from Stripe and PayPal mean your site is PCI out-of-scope. Webhooks are signature-verified; PayPal IPN is postback-validated before we trust a single field.

  • One-time and recurring Stripe payments
  • PayPal Standard with verified IPN
  • Webhook-driven status flips: pending → completed
  • Test mode toggle, encrypted secret keys at rest
  • Donation forms with fixed presets or "donate any amount"
Checkout redirect
stripe.com/checkout
Pay $49.00
Trinity Forms Pro · 1-year license
Logic Free

Conditional logic with eight operators.

Show or hide any field based on prior answers. Match all conditions or any. Use equals, not equals, contains, greater than, less than, empty, and more — on every field type.

  • All-of / any-of matching
  • Eight operators including numeric comparisons
  • Skipped fields aren't validated and aren't stored
  • Server-side enforcement, not just JS
Logic builder
Show "VAT number"
when all match:
country = EU type = business
Multi-step Pro

Long forms broken into focused steps.

Drop in the Page Break block. Add a save & continue button so users can resume from a 7-day token sent to their email. Completion rates climb without you doing anything fancy.

  • Page Break block defines steps inline
  • Save & continue with email-delivered resume link
  • Token-based resume URLs (7-day TTL, configurable)
  • Per-step validation before advancing
Step 2 of 3 · Contact details
Email
Phone
Entries Free

Storage, search, export, and retention done right.

Every submission lands in wp_trinity_forms_entries with one row per field in wp_trinity_forms_entry_meta. Filter by date, form, or status. Export filtered or full to CSV with proper injection guards.

  • Per-form retention policy: auto-delete after N days
  • Entry list with search, date filter, status filter, bulk delete
  • Single-entry view with full submission detail
  • CSV export with =/+/-/@ cell prefix guard
  • Frontend submissions table via shortcode (Pro)
Date Email Status
May 1, 14:22[email protected]paid
May 1, 14:08[email protected]pending
May 1, 13:51[email protected]paid
Retention: auto-delete after 90 days
Integrations Pro

Five native integrations, dispatched async.

Mailchimp, MailerLite, Brevo, ConvertKit, and a generic HMAC-signed webhook out. Each runs on Action Scheduler so a slow third party never blocks your form submit.

  • Native Mailchimp / MailerLite / Brevo / ConvertKit
  • Webhook out with HMAC SHA-256 signing
  • Async dispatch — submission completes in <600ms p95
  • Per-integration test_connection() button
  • Filterable hook to add your own (trinity_forms_integrations)
Mailchimp
Connected
MailerLite
Connected
Brevo
Not configured
ConvertKit
Connected
Notifications Free

Multi-recipient email with merge tags.

Per-form notifications with {field_id}, {all_fields}, {site_url}, {ip}, {date}. Conditional sends ("only if Plan = Enterprise"). WP Mail SMTP fallback supported.

  • Multi-recipient TO/CC/BCC per notification
  • Conditional notifications by field value
  • HTML or plaintext templates with merge tags
  • SMTP-friendly — works with WP Mail SMTP plugin
Subject: New lead from {field_name}
Hi team,

New submission from {field_name} ({field_email}).
Plan interest: {field_plan}

Full details: {all_fields}
Security Free

Quietly secure by default.

Honeypot hidden via inline CSS (bots scrape classes), 3-second time-trap, optional Cloudflare Turnstile. CSRF nonces on every write, prepared statements everywhere, encrypted Stripe keys at rest, MIME + extension whitelisting on uploads.

  • Honeypot + time-trap + optional Turnstile
  • Per-IP rate limiting on submit (10/min default)
  • AES-256-GCM encryption for stored secrets
  • Stripe webhook signature verification mandatory
  • CSV-injection-safe export
  • CSRF nonce
  • Prepared statements
  • Encrypted secrets
  • Stripe webhook signature
  • CSV-injection guard
19 native field blocks

Every field type you'd actually use.

Standard and advanced fields are free. The fields tagged Pro ship with a paid license.

Text, Email, Number Free

Per-field length, pattern, min/max validation. Server-side, always.

Textarea, Select, Radio, Checkbox Free

Single and multi-select with sanitised options arrays.

Date, Time, Hidden Free

HTML5 native with timezone-safe storage. Pre-fillable hidden fields via query string.

File upload Pro

MIME + extension whitelist, max-size cap, multiple files per field. WP Media library aware.

Signature Pro

Touch-friendly canvas signature stored as PNG attachment.

Repeater Pro

Group sub-fields and let users add multiple entries (e.g. attendees, line items).

Rating, Consent Free

5-star / 10-star widgets and timestamped consent checkboxes for GDPR.

Page Break, Section Pro

Multi-step structure and visual section dividers in the same form.

HTML, Payment Pro

Rich-text injection blocks and a Payment field tied to your Stripe / PayPal config.

Start with the free builder.

Free on WordPress.org — the builder, conditional logic, entry storage, CSV export, and notifications. Pro adds payments and integrations from $49/year, flat.