Security and Privacy
Enterprise-class Security, Data Protection, and Redundancy
Security and privacy is the number one concern of businesses when adopting new file sharing platforms. With growing data, users and devices comes additional risks of data leaks and intrusions.
As the industry leader of enterprise file sharing, Egnyte provides world-class security and privacy for all its customers. In addition to providing maximum security for data storage, sharing and access, Egnyte also adheres to strict government compliances and privacy regulations.
No matter what access method (web browser, map drive, FTP, mobile apps), all users must go through an authentication process before accessing their files. After logging in with the correct credentials, user permissions are granularly enforced at every folder and sub-folder level, ensuring only the right users have access to the right files.
Egnyte has adopted the transmission practices of the most secure institutions in the world by using 256-bit AES encryption to encode data during transmission. 256-bit AES encryption is the strictest standard applied by the US Government for TOP SECRET documentation and ensures that even if company data were intercepted, it would be impossible to decipher.
In order to police traffic between public networks and the servers where company data resides, Egnyte employs ICSA-certified firewalls. These firewalls are built to recognize and handle multiple synchronous threats (e.g. DDoS attacks) without performance degradation. The network uses SSL encryption and a Network Intrusion Detection System that monitors and blocks hackers, worms, phishing, and all other infiltration methods.
Egnyte houses all file servers in industry-leading Tier II, SSAE 16 compliant colocation facilities that feature 24-hour manned security, biometric access control, and video surveillance. All servers reside in private cages that require physical keys to open. The servers are never equipped with USB ports or CD/DVD drives, ensuring that data cannot be copied or removed from the devices. All data centers hosting these servers are audited annually for potential risks and limitations.
Egnyte also encrypts data at rest. All files stored on Egnyte RAID6 servers are automatically encrypted using AES 256-bit encryption. If someone were to gain access to data on the servers, the data would be impossible to read. The encryption key is stored in a secure key vault that is a separate database accessible only to the two executive heads of Egnyte's Security Council. As a final precaution, administrators have the option to replicate their data to a secondary Tier II, SSAE 16 compliant facility where it is again replicated on RAID6 servers.
Privacy and Compliance
Egnyte offers FINRA compliant online storage solution with complete end-to-end data protection. Egnyte enables full compliance under SEC 17a, 31a, 204 Recordkeeping regulations for confidential data storage, retention, digitalization and accessibility.
Download Financial Services Security Whitepaper
Egnyte understands the importance of the confidentiality and protection of an individual's Protected Health Information (PHI). Egnyte's comprehensive data security enables HIPAA compliance for healthcare, pharmaceutical and biomedical businesses.
Download Egnyte HIPAA Statement
Download Egnyte HIPAA Business Associate Agreement
Egnyte complies with the EU Safe Harbor framework as set forth by the Department of Commerce regarding the collection, use, and retention of data from the European Union. Unlike other providers, Egnyte does not store EU data in US datacenters. All EU data is stored in local storage at the customer's EU location or in Egnyte's EU datacenter.