Workstream by YouSendIt™ Security

Protect Your Data with Enterprise-Ready Security and Compliance
There’s a core challenge facing enterprises today. In order to stay competitive, companies must share information and collaborate freely on business content while simultaneously meeting stringent security and regulatory compliance. Traditional means of collaboration—email, FTP, and couriers—are vulnerable to security breaches. Email is susceptible to viruses, and when users send files as attachments, you can’t track or regulate them. FTP is an outdated solution that’s confusing to users, so they find compromising workarounds like sharing passwords. And FTP files never expire, so your intellectual property remains exposed. Finally, when you use a courier, you never know who opens the package on the receiving end, or how long it remains lying around their office. Workstream by YouSendIt, on the other hand, is an online collaboration tool that is both efficient and secure, with built-in systems that allow your organization to track and govern all filesharing activity.

Leon Hampton
Assistant Vice President Information Technology, Macerich

Why Workstream by YouSendIt
YouSendIt is the first company to bring business content collaboration services that offer professionals an integrated approach for sending and sharing documents online. Now with more than 24 million registered users in 193 countries, YouSendIt is delivering these business professionals and their IT organizations an enterprise solution — Workstream by YouSendIt to securely collaborate, instantly sync and access content in the cloud with the assurance that important business content is protected. At YouSendIt, we’re committed to delivering the highest levels of enterprise-ready security and compliance in our data centers, application technologies, data at rest policies and procedures, and data in transit security measures.

We saw that YouSendIt uses SSL; employs sound user authentication and password protection features; and has a secure physical structure. Our network engineers didn’t allow FTP for security reasons.

Workstream by YouSendIt™ Security
Key Features
Enterprise-Class Data Center Security YouSendIt has obtained a Service Organization Control (SOC) 2 Type 2 attestation. Data at rest is AES 256-bit encrypted, and all data in transit is encrypted using 128-bit SSL encryption with Class 3 certificates. YouSendIt’s servers are hosted in two data centers—one in California, US, and the second in London, England. Each facility is protected by double-wall construction and employs biometric and video surveillance, physical security, seismic protection, water suppression, and dry-pipe fire protection technologies to prevent damage or loss from fire, earthquakes, flooding, and other natural disasters. All servers are secured in a locked room with limited access restricted to authorized individuals. Access is auditable by password and biometric scan for entry. In addition, YouSendIt’s enterprise-class data centers have built-in system redundancy and high-performance load balancers. Network and System Security YouSendIt leverages ISP- and enterprise-grade firewalls that provide IP filtering and DoS protection. Proactive network scans are performed regularly, blocking Internet spiders and search engines from indexing files. Application Security In addition to a hardened operating system, Workstream uses password and privilege policies to authenticate and authorize users. All passwords and credentials are encrypted during transmissions. With Active Directory integration, users are deployed and managed within the customer network. No passwords are stored outside of the corporate network, and the administrator can tightly manage the entire process. Data Protection During Transfer and At Rest All data in transit is encrypted using 128-bit SSL encryption with Class 3 certificates. Customer file data in our secure data centers is encrypted at the disk level using AES 256-bit encryption. These measures ensure that
Data Center • SAS 70 Type II certified • Video surveillance • Highly restricted access • Biometric scanning • Detailed audit logs • Redundant power supplies • Seismically protected

Data • Encryption in transit: 128-bit SSL • Encryption at rest: 256-bit AES Application • Redundant file copies • Hardened operating system • Virus scanning • Proactive vulnerability scan • Dynamic file name scrambling • No single point of failure • Data confidentiality—No search • Horizontally scalable modules engine or spider access • Advanced access and authentication • File expiration and password controls protection options

Network • Redundant 10GB bandwidth • ISP grade firewalls • High performance load balancers • IP and protocol filtering • DOS protection • Proactive network vulnerability scans

Workstream by YouSendIt™ Security
the integrity of the data is maintained during transmission, uploading, downloading, and storage of a file. Stringent Security Compliance • PCI Compliant. YouSendIt is PCI compliant, meeting the worldwide credit card data security standard for processing payment transactions on the YouSendIt website. • SOC 2 Type 2 Attestation. YouSendIt’s design and effectiveness of controls have been examined by an independent service auditor in accordance with AT Section 101, Attest Engagements, of the Statement on Standards for Attestation Engagements (SSAE) and reported on via an AICPA Service Organization Control (SOC) 2 Type 2 security report. • TRUSTe® Compliant. YouSendIt is TRUSTe Compliant and is a licensee of the TRUSTe Seal Program. The privacy statement and practices of YouSendIt have been reviewed by TRUSTe for compliance with TRUSTe’s program requirements. • Enabling Customers with PCI, HIPAA, and GLBA Compliance Requirements. YouSendIt has controls in place to help those Workstream customers who are subject to PCI, HIPAA, and GLBA compliance. For example, with Workstream, all data in transit is encrypted using 128-bit SSL encryption with Class 3 certificates. Customer file data in our secure data centers is encrypted at the disk level using AES 256-bit encryption. Tracking and Auditing of Data Transfers Workstream offers the ability to track files, obtain return receipts, control access to sensitive files, eradicate password sharing, set expiration policies for files, allow and disallow users, and enforce the most secure password policies at the company, group, or individual level. Workstream also delivers comprehensive user activity and usage reports for audit and compliance purposes.

ABOUT YOUSENDIT YouSendIt, Inc. is the leading provider of extended enterprise collaboration services, with millions of registered users in 193 countries across 98 percent of the Fortune 500. The company’s online services span from simple file sharing to a comprehensive content collaboration suite of services that allow users across an entire organization to securely share content, sign documents, and access files from any mobile device or PC. Workstream by YouSendIt™, the company’s flagship enterprise content collaboration offering, allows professionals to collaborate on content with users both inside and outside their organization while providing IT with centralized security policy and administrative controls to manage the flow of work across the entire extended enterprise. Headquartered in Campbell, CA, YouSendIt is a privately held company backed by venture capital firms Adams Street Partners, Alloy Ventures, Emergence Capital Partners, Sevin Rosen Funds and Sigma Partners. To learn more, please visit http:/ /workstream.yousendit.com/ or call 877.652.1878.

Summary
Every business needs to stay productive and competitive through successful collaboration while remaining protected against security threats. Workstream by YouSendIt provides enterprise-level security across the entire digital communications process, whether you are accessing, storing, or transmitting data.

YouSendIt, Inc.

1919 S. Bascom Avenue, 3rd Floor Campbell, California 95008 408.879.9118 © 2012 YouSendIt. All rights reserved.

sales@yousendit.com www.yousendit.com

Sign up to vote on this title
UsefulNot useful