Skip to main content

Is Filemail compliant with HIPAA requirements?

Updated over a week ago

Filemail has implemented features in our Enterprise Managed File Transfer solution to enable customers to comply with HIPAA requirements. These include the use of Business Associate Agreements (BAAs) with relevant users and entities upon request, end-to-end data transmission encryption using SSL/TSL 256-bit, and servers based in the United States to ensure control over data storage. Comprehensive access monitoring and two-factor authentication ensure that only authorized personnel access designated files. Filemail also maintains stringent security measures like custom file expiration dates, password protection, and antivirus protection. Detailed logs of events and actions provide a complete auditable trail, and real-time notifications keep users updated on account activities.

Filemail offers end-to-end encryption (E2EE) ensuring data is encrypted at rest while residing on our servers. They remain encrypted through out the file-transfer journey from end-to-end. The sender must share their secret key with the receiver, in order to decrypt and access the file. Read more about E2EE with Filemail

Did this answer your question?