FileCloud Security

FileCloud is a hyper-secure cloud storage and file sharing system with tools in place to help admins and compliance officers achieve compliance and keep it.

Compliance

FileCloud enables organizations to run their own GDPR, ITAR, HIPAA, FINRA, NIST 800-171, and CMMC compliant enterprise file share, sync, and endpoint backup solution with necessary encryption options.

Compliance Center

FileCloud offers a powerful tool through the Compliance Center, which includes tabs for ITAR, GDPR, and HIPAA compliance.

General Compliance Requirements

GDPR:
GDPR (General Data Protection Regulation) is an EU data privacy law with regulatory requirements that affect anyone (including those who don’t live in the EU) who processes personal data or offers goods/services to EU residents. Any collected information must be secured, along with strict rules for consent, processing of data, and consumer requests for data.

ITAR:
ITAR (United States International Traffic in Arms Regulation) compliance regulations provide guidelines on securing confidential information for companies involved in the manufacture, sale, or distribution of defense-related articles.

HIPAA:
HIPAA (Health Insurance Portability and Accountability Act of 1996) is a federal law that requires certain standards and regulations to be met to prevent sensitive health information from being released without patient consent. Healthcare providers, plans, and clearinghouses, as well as business associates are required to meet these regulations to protect sensitive health information. e-HPI—or electronic health information—is also subject to HIPAA protections.

FINRA:
FINRA (the Financial Industry Regulatory Authority) rules serve as a guideline for the financial industry, detailing the specific policies that its members must follow and the information they need to collect, maintain, and protect. FINRA enforces compliance with record-keeping rules, including SEC books, record rules applicable to broker-dealers, and Municipal Securities Rulemaking Board (“MSRB”) record-keeping rules. These regulations aim to provide regulators and investors quicker, faster, and more secure access to critical information to protect investors’ and stakeholders’ information and interests.

NIST 800-171:
The U.S. government requires federal contractors to comply with the NIST 800-171 security standard to ensure the security of Controlled Unclassified Information (CUI) in organizations.

MMC:
The Cybersecurity Maturity Model Certification (CMMC) is required by the DoD. This certification is designed to improve the protection of Controlled Unclassified Information (CUI) and Federal Contract information (FCI), and the certification applies to DoD contractors. CMMC measures an organization’s approach to protect FCI and CUI. CUI is information that requires protection or audit controls according to federal law, regulations, and government policies. FCI is information provided by or generated by the government under a contract to develop or deliver a product or service to the government, not intended for public release.

All these compliance requirements can seem overwhelming, but that’s where FileCloud comes into play. FileCloud has a multi-pronged approach to help companies and organizations become and stay compliant.