Standard Security Platform

Absolutely, Sharetru is well-equipped to address more advanced compliance frameworks, including CMMC, ITAR, HIPAA, GDPR, and more. However, it's important to note that these advanced compliance solutions are offered exclusively on our Advanced Security and Compliance Platform. This platform is FedRAMP moderate authorized at both the Infrastructure as a Service (IaaS) and Platform as a Service (PaaS) layers. Additionally, we've achieved FedRAMP moderate equivalency at the Software as a Service (SaaS) layer, backed by a completed System Security Plan (SSP). With Sharetru, you can confidently navigate the complexities of stringent compliance frameworks while ensuring the utmost security for your file-sharing needs.

At Sharetru, we prioritize the security and integrity of your data. We are proud to affirm that all our data is exclusively hosted in U.S. datacenters. Furthermore, on our Advanced Security and Compliance Platform, even our disaster recovery datacenter is located within the U.S. To bolster our commitment to data security, since our inception, every single employee at Sharetru has been a U.S. citizen. This ensures a consistent understanding and adherence to U.S. data protection standards. You can rest assured knowing that with Sharetru, your data remains on American soil, managed by a team deeply rooted in the values and regulations of the U.S.

Sharetru employs benchmark encryption modules to ensure the utmost security of your data. For data at rest, we utilize Advanced Encryption Standard (AES) with a 256-bit key length, one of the most secure encryption methods available. When it comes to data in transit, we rely on Transport Layer Security (TLS) 1.2 to safeguard your information as it moves between systems. If you're interested in encrypting at the file level, it's essential to note that this requires specific training for your users before uploading files. We've consciously chosen not to encrypt at the file level because having access to your encryption keys can pose a security risk for you. Our priority is to strike the right balance between accessibility and security, always keeping your best interests at the forefront.

While we recognize the significance of Business Associate Agreements (BAAs) in the context of HIPAA compliance, Sharetru will only sign a BAA that is provided by us, and if a customer is on our Advanced Security and Compliance Platform. This is because our BAA has our terms of service as the foundational agreement. It's worth noting that our BAA was meticulously crafted by some of the leading HIPAA attorneys in the industry, who played instrumental roles in drafting the HIPAA HITECH rules. As such, we have utmost confidence in its structure and its capability to safeguard your electronic protected health information (ePHI). We believe our BAA offers both clarity and robust protection, ensuring compliance while prioritizing the security of your data.

Setting up Sharetru is designed to be as smooth as possible. Like any software, there's a natural progression of implementation and familiarization, often described as the "walk, crawl, run" phase. However, with Sharetru, this phase is extraordinarily short. We take pride in the fact that many of our customers have been able to fully implement our software even before their trial period concludes. That said, the exact duration of the setup largely depends on the pace at which your organization operates and how quickly you can adapt to new tools. Rest assured, our platform is built with user-friendliness in mind, aiming to get you up and running in no time.

An active user on Sharetru is defined as any individual who possesses a username and password, allowing them to log in (authenticate) to our platform. It's essential to note that if a user is suspended for any reason, they are not considered active. We prioritize transparency and fairness in our user count, so rest assured that suspended users will not be counted against your user quota. This approach ensures you get the most value out of your plan while maintaining clarity on user limits.

Certainly! You have the flexibility to upgrade from our Standard Security Platform to the Advanced Security and Compliance Platform whenever you're ready fat the prorated cost of you current term. However, it's important to note that this upgrade requires a planned migration, as the two platforms operate in completely different environments. Our technical support team will work closely with you to schedule and execute the migration, ensuring a smooth transition. Rest assured, you won't lose any users, settings, folders, or files during the process. The only change you'll experience is a new IP address, which is a result of the migration.