"I don't have to worry about security and all files are encrypted to meet HIPAA regulations. LeapFILE's service department is one of pure excellence with nothing but customer service and satisfaction as their objective. I tried other sites but LeapFILE always came out in front."

-Thomas G.
President
CardioVascular Screening LLC

"LeapFILE has become a name that's used daily at iAppeal Media. Our team and our clients have used it for less than two months, and have already come to rely on it. Go LeapFILE!"

Tom S.

iAppeal Media

Security Compliance

Unlike free/ad-based, consumer-oriented file transfer sites online, LeapFILE is built with security and compliance needs in mind.

 

LeapFILE’s File Exchange Solutions provides multiple layers of protection to comply with your standards of data security. Each layer of protection is designed to reinforce other layers as a comprehensive approach that protects data, authenticates users, provides access only to authorized information, and automatically produces a complete audit trail of users and access activities. What this means for you is:

 

Bullet Proof Security
All security measures are seamlessly engineered into the solution to ensure protection without getting in the way of user adoption. File transfers are delivered using SSL encryption technology and are automatically tracked into the detailed logging system, our data centers are SAS 70 Type II certified, and various user authentication measures ensures the right level of authorized access to both internal users and external guests.

 

Peace of Mind
LeapFILE makes it safe to deliver confidential files over the web, and you know exactly who has access to the files you want to exchange and when they downloaded them. With LeapFILE, you are free from worrying about data transfer security, which lets you focus on what’s most important to you – your business.

 

Regulatory Compliance
LeapFILE’s security measures meet the requirements of corporate and government regulatory standards such as Sarbanes-Oxley, Gramm-Leach Bliley, and HIPAA, thereby making your file communication processes compliant.

 

 

Download the 12-Point Enterprise Security Check List

 

Download the LeapFILE Security Measures Whitepaper

 

 

Security Features

SAS70 Type II Certified Data Center

Third-party SAS 70 Type II certification ensures the data center implements the necessary controls to enforce security.

Cisco PIX Firewall

Professionally managed Cisco firewalls protect every server.

Physical Access Control

Physical access to systems containing confidential files is controlled and monitored. The service is housed in state-of-the-art data centers featuring 24x7 guarded access facilities using a wide range of security systems including video camera surveillance and the latest in iris and palm scanning technologies.

Network Access Control

Network access to systems is highly restricted. The service utilizes firewalls to shield servers from the Internet and restricting access to only HTTP ports. This denies any network-based access to systems that may compromise security.

Encrypted Transmission

Data transmissions over any network are always encrypted. Files are uploaded and downloaded using SSL encryption.

Data Retention Policy

To limit exposure, the system enforces a strict data retention policy. Each file transfer contains an expiration date based on user preference. If a file is not downloaded before the expiration date, the file is automatically and permanently deleted. If a file is successfully downloaded, the file is automatically and permanently deleted after 8 hours. For more control, users can cancel a file transfer and delete the associated files at any time.

Internal User Authentication

Each internal user is assigned a unique ID and password for authentication. In addition, passwords are encrypted to ensure integrity.

External User Authentication

Instead of traditional ID and password authentication, each file transfer carries its own authentication requirements (secure download link, tracking code, authorized email addresses, access code), which compartmentalizes access and simplifies authentication.

Authorization System

Each user must authenticate to start a session every time they use the service. The session carries user credentials that are compared against permissions for every request. This enables the service to enforce permissions at the application level for restricting access to authenticated users only.

Automated Audit Tracking

Audit tracking automatically records the time, IP address, and user name for every file download. This is compiled for every file transfer and made available to the user for tracking file custody. The service also automatically sends an email alert to the sender when the file is successfully downloaded.

Next Steps

  • 1-888-716-9380
  • Request a Free Trial
  • Request a Live Demo
  • Request Consultation
  • Download Resources