HIPAA Compliant File Transfer

From confidential patient records to genome and pathology data, we work with healthcare providers, laboratories, analysts and patients to send and receive critical data when it’s needed the most.

Customers such as Novartis and the Idaho Hospital Association rely on Maytech for secure HIPAA compliant file sharing of healthcare data.

Using Quatrix for HIPAA Compliant File Transfers

Quatrix® is our file transfer solution for businesses and public services which can be incorporated into a secure, HIPAA compliant workflow.

Some of Our Healthcare Customers

Maytech currently works with a range of Pharmaceutical, Medical and Healthcare-related customers to securely transfer the private and sensitive data contained within medical records:

Find out more about our HIPAA file sharing services below, or contact us to discuss your requirements.

Should you wish to test Quatrix, a free trial is available to aid your evaluation process.

Key Quatrix Features for HIPAA Compliant Customers

  • Send, receive, store and manage files securely from inside and outside your organisation.
  • Fully audited workflows mean that all file access is logged.
  • Increased security with strong passwords and 2-factor authentication.
  • Straightforward and easy for customers and business partners to use in a secure manner.
  • Integrates with Outlook to keep data out of mail servers where copies may reside.
  • Data residency in a location of your choice – your data never leaves your specified HIPAA compliant data centre.
  • Unlimited file sizes and integrated SFTP for reliable transfer of very large medical files such as scans, x-rays and medical histories.
  • Automated workflows via our secure API and built-in automations for notifications or automatic transfer or deletion of files.

HIPAA File Sharing FAQ

  • Is Maytech a HIPAA Covered Entity or Business Associate?
  • Do you operate HIPAA compliant data centres?
  • How much does HIPAA compliant file sharing cost?
  • Can Maytech assist with setting up the service?
  • What if we have very large files to send?
  • We have some other specific requirements. Can you help?
  • Do you offer an international service?

Maytech provides an electronic delivery service (not a data processing service), so we are not a HIPAA Covered Entity, nor a Business Associate for HIPAA purposes.

Our secure file sharing service helps you to meet the stringent compliance requirements of HIPAA.

All of our data centres are HIPAA compliant, including those in the US. We take security very seriously, and typically go above and beyond what is required. Our data centres are ISO 27001 certified and have the relevant SOC accreditations which are available on request.
HIPAA compliant file sharing is included as standard in all of our secure file-sharing packages, there is no additional cost.

Maytech’s 24/7 support will help you to get the best out of our service and answer any questions you might have. Plus you get a dedicated account manager once you set up a trial.

We can also work through any specific requirements you have, and support you in the process of commissioning Quatrix file sharing within your organisation.

Once up and running, we can also help users of the product if required.

Very large files are no problem. Many of our customers transfer 100’s of Gigabytes of data at a time.
It’s best to talk to us about your specific requirements, that way we can ensure the setup and configuration is optimised for your intended workflow. We are more than happy to develop our service to meet the need of our customers, so just let our team know what you require and we will consider it.

We have presence in the UK, US, Mainland Europe and Australia, and data centres around the globe. Our support is 24/7 too, so whichever time zone you are working in we will be on hand to support you.

For HIPAA, you have total control over your data, which can be shared internationally from your chosen data centre.

Technical Overview of HIPAA Compliant File Sharing

  • Physical Security – Maytech facilities are located at Tier 3, ISO 27001 certified data centres which benefit from strong physical and electronic security, access logs, uninterruptible power and fire suppressant systems.
  • Firewalls – Maytech’s networks are protected by a stateful packet inspection firewalls. All ports, other than those required for the provision of service are closed.
  • Operating Systems – Quatrix runs on Linux, widely accepted as the world’s most secure operating system. Updates and security patches are applied regularly.
  • Customer Access – access to Quatrix servers is restricted to HTTPS and SFTP protocols, we do not offer access over SSH or telnet. All sessions are automatically terminated after fifteen minutes inactivity.
  • Encryption – customers log in to the admin panel over HTTPS, ensuring that traffic is therefore always encrypted. We provide cloud files' access using SFTP or HTTPS.
  • Password Policy – your users cannot use weak passwords. Enforce two-factor authentication for additional security.
  • Confidentiality – each customer account operates in a discrete file system and each login is jailed to their home folder with no visibility outside unless specifically provisioned by admin. Admins can see home folders of all their users.
  • Granular Permissions – Quatrix offers detailed control over access, file and folder permissions for each user.
  • Data Persistence and Backups – Maytech provides a high-availability service with significant redundancy in all critical resources. Hourly snapshots (backups) are retained for 28 days. We do not keep permanent or incremental backups of customer data and there are no persistent copies of customer data.
  • Audit reports – Quatrix provides interactive tracking of all file transfers. All file shares, uploads, downloads, etc. are easily available.

Get Started with HIPAA Compliant File Transfer

We can help your organisation to meet security regulations and optimise workflows.

Start my FREE trial