ShareFile uses Transport Layer Security (TLS), an advanced security protocol that provides end-to-end protection for client authentication and authorization. Your data is also safeguarded with up to 256-bit encryption — one of the most secure encryption algorithms available today — depending on your web browser capabilities. 

Additional measures include securely configured firewalls, redundant storage, and file backup.

In addition to TLS protocols and industry standards for up to 256-bit encryption, ShareFile also uses a hashed message authentication code (HMAC) and secret key to protect data in transit and prevent tampering. Each ShareFile download link is randomly generated using these strong hash-based message authentication codes, and technical countermeasures block bad actors from guessing codes.

ShareFile uses cloud service providers, such as Amazon Web Services (AWS) and Microsoft Azure, that are certified with SOC1, SOC 2, and ISO 27001 data centers. That means they're specifically designed to meet strict standards for protecting sensitive information like PHI.

Yes. ShareFile’s e-signature technology is designed to address the requirements for enforceable electronic signatures under both the Electronic Signatures in Global and National Commerce Act (ESIGN) and Uniform Electronic Transactions Act (UETA). That means any electronic signatures you collect with ShareFile that aren’t exempt are legally valid and carry the same legal weight as their pen-and-paper counterparts.