If you have been directed to this page by an e-mail error message it is because of one of the following configuration issues.
- Your organization has not responded to our attempts to renew your e-mail compliance service subscription and we have suspended services because the service term has expired.
- Your organization has chosen to not renew your e-mail compliance services and have not configured your e-mail server or service to no longer utilize our compliance gateway.
- You are attempting to send a message though our compliance gateway from an e-mail address that includes a domain that has not been authorized to send message through our gateway.
It would be best to contact your e-mail administrator as a first step. If you wish to contact us for assistance, please send a help request by logging into our help desk at http://caredesk.filink.com, we would be happy to assist.
EntrustedMail, what we do.
EntrustedMail provides e-mail compliance services for organizations that are required by law to secure personal information; EntrustedMail secures such information sent by e-mail. Below is an overview of just some of the federal and state compliance regulations that our services address.
The Health Insurance Portability and Accountability Act (HIPAA):
The HIPAA Privacy Rule provides federal protections for protected health information (PHI) held by covered entities, their business associates and sub-contractors and gives patients an array of rights with respect to that information. If a breach of unsecured PHI occurs, covered entities and any related business associates and sub-contractors must provide notification of the breach to affected individuals and the HHS Secretary. If a breach affects 500 individuals or more, the breach is published online on the Office for Civil Rights breach list and media outlets serving the affected individuals’ state or jurisdiction must be notified. In addition, organizations that violate rules to protect patientprivacy face onerous resolution agreements or possibly fines ofup to $1.5 million.
The Gramm-Leach-Bliley Act (GLBA): GLBA protects consumers’ personal financial information held by financial institutions. Its “Safeguards Rule” requires all financial institutions to design, implement and maintainsafeguards to secure confidential data.
Financial Industy Regulatory Authority (FINRA): Under the SEC’s , firms are required to have policies and procedures addressing the protection of customer information and records.
Massachusetts; Under Mass 201 CMS 17, Massachusetts requires companies toencrypt all personal information of state residents transmitted electronically or wirelessly. This includes Social Security and employer identification numbers, drivers’ license or identitycard data, account, credit and debit card numbers with any password or security and access codes. The law applies to companies within Massachusetts, as well as companies in other states that manage personal information of Massachusetts residents.
Nevada; NRS 603A mandates that all businesses, no matter their size or industry, must secure confidential customer information if it is sent electronically. Statute 603A.215 states that transmission of personal data, including via Web sites and email, must be encrypted.
Washington; HB 2574 protects personal information that is managed by any person or organization that conducts business in the state. If personal information – including name combined with Social Security number, driver’s license number, financial account information – is transmitted or stored on the Internet, the law requires it to be secured and deems encryption as the accepted practice.
In addition to these laws, forty-seven states, the District of Columbia, Guam, Puerto Rico and the Virgin Islands have enacted legislation requiring private or government entities to notify individuals of security breaches of information involving personally identifiable information.