|About ShareFile Cloud for Healthcare||Accepting the ShareFile Cloud for Healthcare Business Associate Agreement||Important Account Considerations and Feature Limitations|
The ShareFile Cloud for Healthcare is a dedicated, secure enclave within a private cloud where customers who use ShareFile to upload and share protected health information (PHI) have that data processed and stored. This private cloud is dedicated for only those customers in industries that process or store PHI, such as healthcare, insurance and financial services. This storage enclave enables covered entities and their business associates to leverage the secure ShareFile platform to process, maintain and store PHI.
ShareFile has taken steps to comply with the Health Insurance Portability and Accountability Act (HIPAA) Security Rule. ShareFile’s compliance with the HIPAA Security Rule has been verified by an independent, third-party security consulting firm, Sword & Shield Enterprise Security, Inc. ShareFile also will enter into a business associate agreement (BAA) with customers that want to upload and share PHI using ShareFile. The features available to customers as part of the ShareFile Cloud for Healthcare support our customers’ compliance obligations under the HIPAA Security Rule.
Participating in the ShareFile Cloud for Healthcare
ShareFile customers must accept or sign the ShareFile Cloud for Healthcare Business Associate Agreement with ShareFile. ShareFile has BAAs available for covered entities as well as other Business Associates. Customers who sign a BAA with ShareFile will see no visible changes in core functionality of their ShareFile account when data moves to the ShareFile Cloud for Healthcare, with the exception of select features outlined in greater detail later in this article.* In addition to customer ShareFile data being housed in the dedicated secure enclave, signing a BAA with ShareFile will further limit the information available to ShareFile support staff. ShareFile provides multiple technical safeguards to support customer compliance obligations under the HIPAA Security Rule. Many of these controls are not configured by default, and responsibility for implementing these safeguards often falls on customers.
Accepting the ShareFile Cloud for Healthcare Business Associate Agreement
When you sign into a Healthcare-enabled ShareFile account for the first time, you will be prompted to accept the BAA referenced above. You must accept the agreement to continue. The ShareFile Cloud for Healthcare Business Associate Agreement becomes effective as of the date on which the authorized party accepting the BA Agreement completes the electronic acceptance process and clicks the Accept button. You may view and print the agreement for your own records from a separate tab by clicking the appropriate link.
Note: if you are an existing ShareFile customer that is converting an existing account to the Healthcare Cloud offering, you may instead be required to sign the above agreement via an electronic signature process. Please contact ShareFile Support for details.
Important Account Considerations and Feature Limitations
Due to industry-specific file storage compliance requirements, the following features are not currently supported for ShareFile for Healthcare plans and are not available for this account type:
- Request List Workflows
- Office Online Editing
- 3D File Previews (3D Files can be downloaded, but not previewed in the web browser)
Regarding Email Notifications – Certain email notifications may include the file type extension (ex: .doc, .pdf) but NOT the name of the file itself.