🩺 Vitals
- 📦 Version: 4.9.5 (Released 2026-04-29)
- 🚀 Velocity: Active (Last commit 2026-05-04)
- 🌟 Community: 12.2k Stars · 2.2k Forks
- 🐞 Backlog: 217 Open Issues
🏗️ Profile
- Official: formbricks.com
- Source: github.com/formbricks/formbricks
- License: AGPL-v3 (Core) | Proprietary (EE)
- Deployment: Docker | SaaS
- Data Model: PostgreSQL
- Jurisdiction: Germany 🇩🇪 (Formbricks GmbH)
- Compliance (SaaS): SOC 2 Type II | GDPR
- Compliance (Self-Hosted): HIPAA Eligible | GDPR Ready | ISO 27001 Ready
- Complexity: Low (2/5) - Next.js based, easy Docker deploy
- Maintenance: Low (2/5) - Standard container lifecycle
- Enterprise Ready: High (4/5) - SSO and advanced RBAC available in EE
1. The Executive Summary
What is it? Formbricks is an open-source experience management platform built on Next.js. It enables product teams to deploy targeted surveys, NPS scoring, and feedback widgets directly within their applications or websites. Unlike generic form builders, it is deeply integrated into the product experience, allowing triggers based on specific user actions.
The Strategic Verdict:
- 🔴 For Basic Static Forms: Overkill. If you only need a simple "Contact Us" form or a standalone lead capture page, a tool like OpnForm or your native CMS is more efficient.
- 🟢 For Product-Led Growth (PLG) Teams: Strong Buy. For teams needing to collect contextual, in-app user feedback without leaking sensitive behavioral data to third-party US-based analytics platforms, Formbricks is the definitive sovereign choice.
2. The "Hidden" Costs (TCO Analysis)
| Cost Component | Typeform (SaaS) | Formbricks (Self-Hosted) |
|---|---|---|
| Response Limits | Strict Paid Tiers | Unlimited (Hardware Bound) |
| Data Ownership | Vendor-Locked | 100% Sovereign (Your DB) |
| White-Labeling | Premium Tier Only | Paid Feature (EE) |
| Identity (SSO) | Enterprise Tier Only | Paid Feature (EE) |
3. The "Day 2" Reality Check
🚀 Deployment & Operations
- Installation: Highly portable and modern architecture. It deploys easily via Docker Compose, utilizing a standard Next.js frontend and PostgreSQL database.
- Data Portability: Features a robust REST API and Webhooks (Slack, Zapier, n8n) for real-time data streaming, ensuring survey responses can be easily piped into your central data warehouse.
🛡️ Security & Governance (Risk Assessment)
- Jurisdiction & GDPR Advantage: Headquartered in Germany, Formbricks GmbH operates under strict EU privacy laws. This provides a native GDPR advantage for European enterprises compared to US-based incumbents. However, for organizations with strict data residency mandates outside the EU, self-hosting remains the recommended strategic path.
- The Compliance Shift: While the vendor holds a SOC 2 Type II report for its cloud tier, self-hosting shifts the burden of infrastructure hardening and database encryption entirely to your internal team. This shift is necessary for achieving full HIPAA compliance where a BAA cannot be negotiated for the SaaS offering.
- License Risk & The Open-Core Trap: The core application is licensed under AGPL-v3. However, critical enterprise governance features—specifically SSO (SAML/OIDC) and advanced RBAC—are located in the
/eedirectory and require a paid license key. Enterprises must factor this "Enterprise Tax" into their long-term TCO if centralized identity management is a requirement.
4. Market Landscape
🏢 Proprietary Incumbents
- Typeform: The market leader in conversational form design, but suffers from restrictive response limits, high costs, and US cloud data lock-in.
- Qualaroo: A strong legacy competitor for in-app feedback, but operates strictly as a proprietary SaaS.