Your results...

  Print Your Results

Questions

Your Response

How Sophos Can Help

Do you have a data protection policy?

Yes: Well done. Make sure that it is clearly communicated to your all employees and that they understand what they need to do to comply. No:You need to create a data protection policy and then communicate it clearly to all your employees so they understand what they need to do to comply.

Stay on top of the latest threats with our award-winning computer security news site.

Check out Naked Security
Stay on top of the latest threats with our award-winning computer security news site.

Check out Naked Security

Are your company laptops encrypted?

Yes: Well done. PHI on them is safe, even if the laptops get lost or stolen. You also need to be able to demonstrate encryption in case of a breach. No: You will need to secure personal data on laptops. Fines for PHI breaches can run into the millions plus you also risk significant reputation damage.

If you're using BitLocker encryption but finding it difficult to manage, take a look at Sophos SafeGuard Encryption. It seamlessly manages keys and recovery functions on BitLocker- and FileVault 2-encrypted drives, simplifying deployment and management.

Get Pricing
Take a look our award winning Sophos SafeGuard Encryption solution. It protects data on multiple devices and operating systems without impacting employee productivity.

Get Pricing

Do you have PHI on removable media e.g. USB devices, CDs, DVD, etc.

Yes: You need to make sure that the data is encrypted and can only be accessed by authorized users. No: If you do start holding data on these media in the future you will need to ensure that it can be encrypted.

Sophos SafeGuard Encryption provides complete protection on multiple endpoints, including USB devices and CDs, without impacting performance.

Get Pricing
If you need to secure data on removable media in the future, consider Sophos SafeGuard Encryption. It provides complete protection on multiple endpoints (USB devices, CD's, etc.); allowing users to share encrypted data without slowing them down.

Get Pricing

Do you encrypt PHI sent by email?

Yes: Well done. Email is a common source of data leaks. No: Email is a common source of data leaks and you will need to adopt an email encryption solution. Fines for PHI breaches can run into the millions.

Sophos SPX Encryption with policy-based DLP is the simplest, most effective way to secure your email. And it's available today - at no extra cost - in Sophos UTM. Next time you refresh your firewall, consider consolidating your network and email protection with Sophos in one cost-effective solution.

Get Pricing
Sophos SPX Encryption with policy-based DLP is the simplest, most effective way to secure your email automatically detects sensitive information leaving your organization by email, and either blocks it or encrypts it. And it’s available in Sophos UTM.

Get Pricing

Do you store PHI in the cloud?

Yes: You need to ensure that data is encrypted at all times, including when it’s in transit (e.g. while being uploaded). No: If you move to the cloud in the future, make sure that the ability to encrypt the data – both in the cloud and also when being transferred – is on your core requirements list.

Sophos SafeGuard Encryption automatically and invisibly encrypts/decrypts files as they are uploaded or downloaded from cloud services.

Get Pricing
Sophos SafeGuard Encryption automatically and invisibly encrypts/decrypts files as they are uploaded or downloaded from cloud services.

Get Pricing

Do you have Data Control and Device Control at the endpoint?

Yes: Well done. These are important tools in your data protection strategy, stopping a common source of data loss. No: These are important tools in your data protection strategy and you should look to implement them. They protect the transfer of PHI onto portable media, web uploads and email, stopping a common source of data loss.

Sophos Endpoint includes state of the art Data Control and Device Control as standard, at no additional cost. It includes a HIPAA category of sensitive data definitions which can assist with the detection of PHI, patient related HIPAA medical forms, FDA recognized drugs, and ICD-9 terminology.

Get Pricing
Sophos Endpoint includes state of the art Data Control and Device Control as standard, and at no additional cost. It includes a HIPAA category of sensitive data definitions which can assist with the detection of PHI, patient related HIPAA medical forms, FDA recognized drugs, and ICD-9 terminology.

Get Pricing


Read the Sophos Encryption for Healthcare solution brief to see why Sophos SafeGuard is the ideal solution to help secure your PHI.

Sophos Encryption for Healthcare

This check is provided to help companies identify areas of non-compliance. It is not an exhaustive review of all elements of the Acts, nor is it legal advice. Please consult your own legal experts if required.