Filter by Category

Meeting Compliance Regulations and Privacy Laws for Sensitive Data Transfers

Secured ComputerHighly sensitive data is frequently exchanged between organizations.

For instance, a business will routinely transmit financial information to their bank including payroll direct deposits and ACH payments. These transactions likely contain sensitive elements like bank account numbers, routing numbers, social security numbers, and payment details.

Industry-specific transactions may also contain highly sensitive data. For example, in the health care business, patient records are regularly exchanged between hospitals, doctors and payment providers. In the insurance business, policy information is often transmitted between carriers. This information may contain names, addresses, birth dates, social security numbers and other private information.

Loss of sensitive data can result in great financial expense, lawsuits and public embarrassment for the affected organization. Therefore it is no surprise that industries are setting new regulations and standards to address the security of their data. For instance:

  • PCI DSS requires that credit card numbers are encrypted while "at rest" and "in motion."  Failure to do so can result in severe fines and potential loss of your merchant account. Learn more >
  • HIPAA requires that healthcare records are secured to protect the privacy of patients. Learn more >
  • The GDPR requires organizations that offer services to EU residents meet several privacy rules that relate to data portability, data breach notification, inventory, and more. Learn more >
  • State privacy laws require that customers are notified if their personal information may have been lost or stolen. Some states will also assess large fines against organizations if this data is not protected properly.

Organizations should consider compliance requirements and privacy laws when looking for a managed file transfer (MFT) solution. An effective solution should have a number of encryption methods available to protect sensitive data including SSL, SSH, AES, and OpenPGP encryption. Audit trails should also be in place to track file transfer activity so you can easily determine what files are being sent, what time they are sent, who the sender and receiver is, and so on.

If you're looking for a comprehensive solution, GoAnywhere MFT can do all these things and more. You can learn about the compliance requirements and regulations we help with on our compliance page

 

Add a Comment

Allowed tags: <b><i><br>

Latest Posts


10 Ways to Achieve File Transfer Automation with GoAnywhere MFT

January 14, 2019

Here’s a fun fact: When it comes to streamlining file transfer processes, automation is the supporting sidekick to any IT or cybersecurity professional. Like Robin supports Batman…


Which is Better: Dropbox vs. MFT?

January 9, 2019

So you’re looking for a way to securely share files with your team. Great! There are plenty of tools you can use today to collaborate and share documents as projects arise. Some are on-premises…


Data Breach and Incident Response Plans | 2019 Templates & Best Practices

December 27, 2018

Every year, organizations hope that statistics for data breaches will improve, that things will be better than the year before. And every year, they are dismayed to discover that even though…


How One Global Health IT Company Achieves PCI-Compliant File Transfers with an MFT Solution

December 21, 2018

Compliance audits can be stressful, especially when they come on the heels of data security standard updates and deadlines. For one global health technology company, a looming PCI DSS audit not only…


What is FTPS?

December 4, 2018

Whether you’re looking to upgrade from your current FTP file transfers or have new requirements from a trading partner or customer, you might be wondering what FTPS is. How does it work, you…