FileFlex Enterprise stands out as the perfect HIPAA-compliant solution for sharing and collaborating files and DICOM images for HIPAA-covered entities and business associates. This is achieved through hosting the FileFlex server, which is done either by the HIPAA Covered Entity directly or by the HIPAA Business Associate providing FileFlex services to the HIPAA Covered Entity. Importantly, no Protected Health Information (PHI) or Personally Identifiable Information (PII) is stored or transmitted through FileFlex infrastructure.
See HIPAA-Compliant File Sharing Using Zero Trust Data Access (ZTDA) .
Data at rest is securely stored on the HIPAA entity or associate’s pre-existing HIPAA-compliant and protected storage infrastructure. Meanwhile, data in motion is encrypted and transferred via servers hosted either by the HIPAA-covered entity or the HIPAA business associate.
When following HIPAA compliance policies, files can be shared in a view-only mode, and downloading to local devices is restricted.
See Protecting Access and Sharing of Protected Health Information with ZTDA for Windows.
File sharing and collaboration occur directly from the HIPAA entity or associate’s source location, without any copies being stored on remote devices or third-party servers.
See Top 13 Reasons to Use a Zero Trust Secure File-Sharing Platform.
File sharing and collaboration can be limited to HIPAA-covered entities or business associate contacts.
See 16 Top Reasons to Adopt a Content Collaboration Platform Built on a Zero Trust Architecture.
FileFlex Enterprise underwent evaluation by an independent, third-party information security firm at the CISO level. They thoroughly reviewed the information security capabilities introduced by FileFlex Enterprise, conducted a Threat Risk Assessment (TRA), and ensured compliance with HIPAA requirements for data privacy and security. The FileFlex application and its infrastructure successfully passed a rigorous red-team penetration testing assessment using a black-box methodology.
For full test results, contact your FileFlex representative.
Read Embracing Zero Trust Data Access for IT-Controlled Chain-of-Command.