Security, Privacy and Compliance
Enterprise-class Security, Data Protection, and Redundancy
Egnyte offers a unique hybrid cloud solution with enterprise-class security and privacy; providing businesses with secure file sharing, access, storage and backup. In addition to providing maximum security under each category, Egnyte also adheres to strict government compliance and privacy regulations for data storage and sharing.
|
Access SecurityNo matter what access method (web browser, mapped drive, FTP, mobile apps), all users must go through the authentication process before accessing their files. Egnyte requires every user to enter their domain name, user name, and password. After logging in with the correct credentials, user permissions are granularly enforced at every folder and sub-folder level, ensuring only the right users have access to the right files. |
Transmission SecurityEgnyte has adopted the transmission practices of the most secure institutions in the world by using 256-bit AES encryption to encode data during transmission. 256-bit AES encryption is the strictest standard applied by the US Government for TOP SECRET documentation and ensures that even if company data were intercepted, it would be impossible to decipher. |
|
|
Network SecurityIn order to police traffic between public networks and the servers where company data resides, Egnyte employs ICSA-certified firewalls. These firewalls are built to recognize and handle multiple synchronous threats (e.g. DDoS attacks) without performance degradation. The network uses SSL encryption and a Network Intrusion Detection System that monitors and blocks hackers, worms, phishing, and all other infiltration methods. |
Physical SecurityEgnyte houses all file servers in industry-leading Tier II, SSAE 16 compliant colocation facilities that feature 24-hour manned security, biometric access control, and video surveillance. All servers reside in private cages that require physical keys to open. The servers are never equipped with USB ports or CD/DVD drives, ensuring that data cannot be copied or removed from the devices. All data centers hosting these servers are audited annually for potential risks and limitations. |
|
|
Data SecurityEgnyte goes to the additional step to encrypt data at rest. All data stored on Egnyte RAID6 servers are automatically encrypted using AES 256-bit encryption, so that if someone were to gain access to data on the servers, the data would be impossible to read. The encryption key is stored in a secure key vault that is a separate database accessible only to the two executive heads of Egnyte's Security Council. As a final precaution, administrators have the option to replicate their data to a secondary Tier II, SSAE 16 compliant facility where it is again replicated on RAID6 servers. |
Privacy and Compliance
|
Financial ServicesEgnyte offers FINRA compliant online storage solution with complete end-to-end data protection. Egnyte enables full compliance under SEC 17a, 31a, 204 Recordkeeping regulations for confidential data storage, retention, digitalization and accessibility. |
|
HealthcareEgnyte understands the importance of the confidentiality and protection of an individual's Protected Health Information (PHI). Egnyte's comprehensive data security enables HIPAA compliance for healthcare, pharmaceutical and biomedical businesses. |
|
EU CustomersEgnyte complies with the EU Safe Harbor framework as set forth by the Department of Commerce regarding the collection, use, and retention of data from the European Union. |
