ShareFile Security: 7 Layers to Keep Your Data Safe in the Cloud
Here at ShareFile, we know the importance of security, which is why we take the proper measures to protect our users. Our customers, and their customers and colleagues, trust us with sensitive information on a daily basis. We have layers of security in place to ensure confidentiality when transferring and storing business documents.
Layer 1: As a ShareFile user, the first layer of security is in regard to accessing your account. Each user of the system has a unique login and password. All user passwords are hashed in the ShareFile database, meaning that not even the ShareFile support personnel have the ability to view or in any way determine a user’s password. To access your sensitive documents, you are prompted to sign into your account with your email and password. This serves to protect your information from unauthorized users.
Layer 2: The second layer of security is default privacy settings. By default, your files are only accessible if you choose to share them with others. When ShareFile users create folders in the system, only the specified users that are designated by owner of the folder are able to access the contents of those folders. Users who do not have access to the folder will not even see the folder in their view of the system. So, you can rest assured knowing that your information is kept confidential.
Layer 3: ShareFile’s servers are located in facilities that are managed by Windstream Hosted Solutions and Amazon Web Services, trusted providers of secure and reliable data centers. Our data centers feature computer network security measures such as:
- Ballistic-proof exterior, including doors & windows
- Fingerprint scanners and ID checking for all entry and exit of the facility
- Double Man Traps force double verification and provides extra secure data center entry
- Redundant off-site monitoring of all security systems
- Locked Cabinets and Cages
Layer 4: Our privately managed server farm is equipped with the latest firewalls and computer internet security updates to help keep your data completely safe. Third-party SAS 70 Type II certification verifies that all data center facilities operate with strict security procedures. Servers are protected with a dedicated firewall, which constantly scans for and protects against malicious threats. The firewall protects ‘zero-day’ protection against any traffic that does not conform to standard Internet protocols, behaviors, or patterns.
Layer 5: All communications between ShareFile and the user are encrypted using the SSL (Secure Socket Layer). This is the same functionality used by banks and popular e-commerce services for secure communication. ShareFile also offers the ability to store your files encrypted when they are at rest on our servers, adding an additional layer of security. Additionally, all uploaded files are scanned by anti-virus software. Any files that are flagged as potential viruses are denoted with a red exclamation point icon within the application, and a warning is displayed before users attempt to download these files.
Layer 6: We also have several corporate policies in place that help protect the security of data in the system. All support functions are conducted by ShareFile employees, and access is restricted by IP address so that support functions can only be performed from within the secure ShareFile physical office facilities. Additionally, it is company policy that ShareFile support engineers only access client data when such support has been specifically requested by a user. All login and upload/download activity by support engineers here at ShareFile is logged in our activity log, which is completely viewable by administrators on each account.
Layer 7: Our latest layer of security features an advanced security set, focused on enterprise-level capabilities, including granular control over password strength requirements and number of failed logins before user is locked out, and forced reset of password after defined number of days to help comply with PCI and other security requirements and best practices.
If you’re interested in learning more about how your data is protected with ShareFile, download our security report.