Posts

HIPAA Compliance – Box.com

/in /by

HIPAA Compliance – for Box.com

HiPAA Compliance – The electronic age has made it easier for doctor’s offices and hospitals to store patient information hipaa compliancewithout much paperwork. They do, however, must adhere to special regulations concerning storage of that data. These rules are known as the Health Insurance Portability and Accountability Act, or HIPAA, and the Health Information Technology for Economic and Clinical Health, better known as HITECH.

Cloud computing is becoming more prevalent. It is imperative for business which collects sensitive information to use a cloud service provider which adheres to HIPAA and HITECH. Box.com is a leader as a commercial cloud provider. Is Box.com HIPAA compliant?

How Does Box Meet HIPAA Compliance Standards?

Box is considered HIPAA compliance standards. For Enterprise and Elite accounts needing HIPAA protection, Box signs business associate agreement, BAA, when they ask for it. Any BAA required should be signed before the customer begins storing sensitive information within their cloud account.

While there is no official certification process, Box’s features ensure that protected health information stays safe in the cloud. This provider not only encrypts data as it is transferred from hard drive to cloud, and the cloud to the hard disk, but it remains encrypted while on their servers.

Additionally, Box restricts access to the physical server farms where the information resides. The company also uses strict logical system access controls to maintain security.

Consumers have administrative controls to help govern their data. Administrators choose which the following employee access:

  • Download
  • Read
  • Edit
  • Lock documents
  • Password protect files

Administrators can monitor access to data seeing who accessed them, shared them, or edited the. Audits also report the account activities for not only content but users alike. Administrators can also use this area to train employees on different security controls and policies.

Box – HIPAA Compliance, to Extent

Like all online service providing HIPAA compliance, the responsibility does not just lay with them to protect your data. In fact, their compliance standards only go so far as to ensure documents are safe while in storage. Box does not control how your employees treat protected health information.

For better security, all users need to activate Box’s two-factor verification. The first factor being a secure password with upper and lowercase letters, as well as numbers and special symbols. The second factor is a unique code sent via SMS to the user’s cell phone, a voice call, or use of particular security application to access their account. This additional step prevents unauthorized logins.

As an administrator, you can limit who within your corporation has access to sensitive information. By restricting access, you limit the danger of file sharing when there is no need. Using Box’s built-in feature for locking and password protecting data helps to keep these records from unnecessary user access.

As Box is simply a cloud storage provider, it is up to the network administrator to ensure email services, like Office 365 or Gmail, is HIPAA compliant. Both Microsoft and Google have HIPAA compliant services using BAA just as Box. If you use these services for email, contact their support groups for assistance in bringing their services into compliance if you have not already done so.

Any patient authorization forms allowing you to transmit data to them or others via an electronic service is your responsibility to maintain. As with email services, Box does not take responsibility for ensuring you have permission to share files from your Box account with a third party or the patient. While all records transmitted to and from Box are encrypted, you must explain the risks of sending information electronically.

Backup Your Backup

Many health professionals use Box as both a storage and backup location by many health practitioners. It is uncommon for data loss while stored on their servers; it can happen. That is why it is necessary to have a backup of your backup.

CloudAlly offers backup solutions for Box Enterprise customers. Our Amazon S3 servers save all files and folders for each user. Administrators can choose to back up every day or every few days as they see needs. Additionally, administrators can include all users in the backup or just a select few.

For added security, CloudAlly can send you a daily log of your backup activity. This record includes a summary of data added to your account and a more extensive look at which users and files contained in the daily sweep.

In the event data is missing from your Box account, restoration of the missing file is easy and non-destructive. You control what files remain in your CloudAlly account. CloudAlly doesn’t delete files unless requested and authorized by your admin.

Try our service free for 15 days, backup your business critical data today!

The Best Cloud Storage and File-Sharing Services 2017 – Comparison

/in , , , /by

The Best Cloud Storage and File Sharing Services: Google Drive vs Dropbox vs OneDrive

Cloud storage is almost a necessary part of digital life. It allows you to access files from anywhere if you can access your cloud account. No more having to remember to put important files on a flash drive to transport them. There are several different cloud storage companies to choose from. What are the Best Cloud Storage and File Sharing Services? Here in this guide we compare Dropbox, Box, and OneDrive.

Dropbox

When it comes to cloud storage, Dropbox is one of the most popular. For good reason, it was one of the first on the market. While Dropbox doesn’t offer the most space for their free accounts, they do offer a generous paid plan options for affordable monthly or yearly fees.

Security is on the top of everyone’s concern list. All of Dropbox’s plans have 256-bit AES and SSL/TLS encryption. Also, all plans allow for two-factor authentication. The service does offer HIPPA compliance. However, it is not available on free, pro, or standard services.

Dropbox allows you to share files stored on their service with others. To give you more security, you can set permissions such as view only or editing capabilities. You can also choose to password protect files shared and have the sharing links expire after a set time.

For standard and higher plans, you can set granular permissions for other users who may have access to the account. These plans are more for geared for business users instead of the personal user, however.

All Dropbox accounts are equipped with MS Office 365 integration and Dropbox Paper. Shared files can be commented on if permissions are set by the administrator.

Pros:

  • Easy Sharing
  • 256-bit AES Security
  • Expiring Shared Links
  • Two-Factor Authentication
  • Anytime access
  • Generous storage size, paid plans start at 1TB

Cons:

  • Free service is only 2GB
  • Pro plan only has 30-day version history and file recovery
  • Pro and Free plan only have email support
  • HIPPA support is only available for Advanced and Enterprise users

Paid Dropbox plans to start at $9.99 billed monthly or $99.99 billed annually with 1 TB storage. Larger storage sizes are available. While their Advanced and Enterprise service are geared for businesses, they do have a dedicated Dropbox for Business service for corporations.

Box

Box is a huge competitor for Dropbox. Like Dropbox, Box offers anywhere-anytime access to files stored within your cloud account. Box, however, prizes themselves in having tight security for all their accounts no matter which level you choose.

Box understands not all their clients are located in the United States and need differing security options. That is why the company has Processor Global Binding Corporate Rules and Controller Global Binding Corporate Rules in place for their European clientele. For Asia-Pacific users, the company has Assai-Pacific Economic Cooperation Cross-Border Privacy Rules systems and adhere to ISO 27018. Box also adheres to ISO 27001, SOC1, PCI DDS, FedRAMP, and HIPPA regulations. Customers outside the US can enjoy in-region storage in either Europe, Asia, Canada, or Australia. As with Dropbox, those interested in additional security can set up two-factor authentication.

Because the cloud is more than just for storage, Box makes it easy for account owners to share files with others. Files sharing via links or straight from your Box account allows you to get important documents where they need to go, even if they would normally be too big to send via email. With file-sharing, all users can see what changes are made and have access to the latest versions.

For those concerned about downloading large files, most file types are easily opened with Box. Supported types include Word, Excel, AI, ESP, PSD, and PDF. The service also supports photo files and more. With over 120 supported file types, you should not have to download a file or have the program on your system just to view it.

Pros:

  • Generous free service at 10GB
  • Paid services start at $10 for 100GB
  • SSL and at-rest Encryption
  • File versioning
  • Paid plan offers a 5GB file upload limit

Cons:

  • 250 MB file upload limit on free plans
  • Personal plans limited to either 10 or 100 GB

Box makes it easy to keep all your files secure and accessible from anywhere. As with their competitors, they do offer business plans for corporate users. These plans carry the same security but do require a minimum number of users to enroll.

OneDrive

OneDrive is Microsoft’s answer to online storage. As with Box and Dropbox, they offer online, PC, Mac, and mobile access to files from anywhere at any time. Because it’s Microsoft, it works seamlessly with all Office products.

Microsoft cares about security just like Dropbox and Box. While their security is not as sophisticated as Box, it is just as secure as Dropbox. They use 256-bit AES security to control their accounts. The service also provides two-factor authentication for online access.

Users can share files and folders with others. You set limitations on how the files are secured. You can restrict them to read-only or editable with the ability to download to another device. Files edited by other users will show what changes were made by whom.

Files created in OneNote can be backed up directly to OneDrive. Also, other files created by any Windows Store app can also be stored directly to the cloud storage service. From your OneDrive you can post photos to Facebook.

Pros:

  • 256-bit AES Security
  • 5GB Free
  • Additional Free storage available with Automatic Camera Roll Backup
  • Seamless Integration with Office Documents
  • Create Surveys with Excel

Cons:

  • Paid limited to 50GB unless you have Office 365
  • Scanning to upload to OneDrive and Excess sharing requires Office 365

Microsoft OneDrive might not be quite as good as Box. However, for loyal Microsoft users, it is the obvious choice as it easily allows all your services to integrate into one storage location. If you have an Office 365 account, you get additional storage along. Personal users get 1TB storage while Home users have access to up to 5TB. If you want to purchase a 50GB storage service instead of Office 365, it is affordable at only $1.99 per month.

All three have their strengths and weaknesses. No matter which one you choose, it is important to consider having a backup for your cloud service. While all service providers offer redundancy to ensure their servers never lose anything, it doesn’t stop you from accidentally deleting files. CloudAlly offers affordable backup options for all your cloud storage needs.

The Best Cloud Storage and File Sharing Services:

Try our automated FREE 14 day backup – Click Here