Are you using DropBox?

(1/3) > >>

I don't use Drop Box, but I know many who do.. well you might want to rethink it:

Is Dropbox HIPAA, FERPA, SAS 70, Safe Harbor, ISO 9001, ISO 27001,or PCI compliant?

Back to Help Center

Dropbox complies with the U.S. E.U. Safe Harbor Framework and the U.S. Swiss Safe Harbor framework as set forth by the U.S. Department of Commerce regarding the collection, use, and retention of personal data from European Union member countries and Switzerland.

Unfortunately, Dropbox does not currently have HIPAA, FERPA, SAS 70, ISO 9001, ISO 27001, or PCI certifications. We'll update this page with any new certifications as we receive them.


Wait, people use Dropbox in the Healthcare field? The first thing anyone should be checking before using any cloud service is if they're equipped to handle the Healthcare field.

Yes, I've heard of people using them and other backup providers such as Carbonite.   I myself use Efax however they have a HIPAA security version to which they charge extra for. :)   


what's wrong with Carbonite?

That's crazy and very dangerous. Here is the thing there is a huge difference between a company saying they're HIPPA compliant and them willing to actually sign the BAA's with doctors, billing co's, insurance, etc. Meaning they're willing to shoulder the blame if their cloud service isn't up to snuff. I don't want just certification I want the BAA too. There are tons of company who are now doing this since Verizon and Microsoft now offer a BAA with their cloud services. Many weren't and still aren't and I personally stay away from them. We use Verizon's cloud service but plenty of my clients use Microsoft's.


[0] Message Index

[#] Next page

Go to full version