Data Risk Assessment and Remediation
for MSPs and IT Managers 

 

 Actifile is the only platform providing end-to-end multi-tenant data discovery, monitoring and 1-click encryption 

Uncover and protect sensitive data for security and all types of compliance (HIPAA, PCI, CMMC, FINRA, CCPA, GDPR and others).

Learn more here.

Why Actifile?

Don’t take our word for it

“Actifile is a game changer in the way it detects and protects private data. It helps my SMB organizations comply with regulations such as HIPAA, GDPR, NIST 800-53 and others.”
Steve Rutkovitz
CEO, Choice CyberSecurity

Actifile is Designed for MSPs

Actifile’s multi-tenant, product range lets you address each customers’ need, from occasional risk assessments, through 24/7 monitoring and culminating with risk remediation. Features:

Built in Regulatory Templates

Risk Dashboard and Reporting

Data at Rest Discovery

Data Risk Heatmap

Transparent Encryption for Parked Data

Multi-Tenant Cloud Based Management

Blacklist and whitelist controls

Supports All
Flavors of BYOD

Data Privacy Risk Assessment for MSPs

For a low monthly fee run multi-tenant automated risk assessments and get customer ready reports with actionable insights for all of your customers.

1

Discover regulated data across the organization’s laptops, workstations and servers.

2

Discover data flow to and from any application, including business sanctioned applications and shadow IT. 

3

Create subscription opportunities to provide continuous monitoring and alerts of the risk as it evolves.

4

Create services opportunities to assist with compliance audits and drive down data privacy risks. 

MSP Example Use Cases

Actifile supports most sensitive data / regulatory compliance use cases:

Community Hospital
Community hospital has a variety of endpoints including Doctors with BYOD, departmental and administration endpoints. Due to HIPAA concerns the hospital and their MSP decided to use Actifile.

As a result of installing Actifile, the community hospital was able to:

  1. Discover existing PHI on the hospital’s endpoints.
  2. Transparently encrypt all hospital related PHI on roaming endpoints (such as the BYOD Doctor endpoints)
  3. Create audits and report on PHI usage.
Financial Services
A financial services firm (wealth management) integrated Actifile. Using Actifile it was able to solve two issues:

  1. Support provisioning of laptops to their employees.
  2. Enable the protection of data at subcontractors (such as printers, lawyers, HR/benefits, etc.).
  3. Demonstrate compliance

As a result the financial services company was able to control the data without risking scanning employee private data and/or other financial institutions’ customer data.

Diagnostics Lab
Labs deal with large amounts of PHI. While most of it resides in the Lab Information Management System (LIMS), ad-hoc workflows routinely occur resulting in PHI being exposed. Lab management and their MSP decided to implement Actifile to understand and ultimately control this flow of information. Using Actifile the lab was able to:

  1. Run a risk assemssent to discover and audit all PHI that is outside the LIMS
  2. Evaluate the workflows and optimize that ones that result in liability
  3. Execute controls to substantially reduce the liability associated with data
Benefits Administrator
Benefits administration requires access to employee private data as well as financial information. Furthermore, it requires that the employees process this data and activate benefits with the benefits provider.

Using Actifile the benefits administrator was able to:

  1. Run a risk assessment to discover PII and financial data
  2. Create a working audit of all the data at all times
  3. Provide controls that help reduce the liability associated with the data without interrupting the workflows
Contractor
Construction is big business with fierce competition. With project managers traversing the globe with laptops crammed full with project data (plans, budgets, proposals, architecture plans, etc.), the risks were unacceptable. Furthermore, connectivity is not always perfect at construction sites. So relying on cloud is not an options.

By pointing Actifile to their project repository, Actifile was able to help the company protect their assets transparently – ensuring that authorized personnel were able to get their job accomplished – but in a protected manner.

Duty-Free Retailer
A duty free retailer has many point of sales machines, and some with network browsing capability.
Actifile helped the retailer’s IT to:

  • Figure out what was on those endpoints.
  • Ensure that European customer information is protected for GDPR.
  • Ensure that the corporate information is protected.

Risk Monitoring Drives MSP Transition to vCIO 

By pointing MSPs to data stores and data flows, Actifile can also help MSP transition from technical to vCIO roles. Here Actifile CEO explains how:  

Latest News

IT risks and insurance

Insuring against IT risks in small and medium sized (SME) organizations is becoming more important: The move to the cloud makes the employee endpoints the data hub. Employees download, process and upload data. Some data gets left on the endpoint and may get uploaded...

How does Actifile calculate the Data Privacy Risk?

Actifile's Risk Portal displays risk as number of files, number of records and an estimated assessment of the monetary risk the data would pose if a data privacy incident were to happen. One question we get asked quite often is about this $ value: "how do you...

Risk-to-data or Risk-in-data?

The risk-to-the-data              vs. the-risk-in-the-data.    It is intuitively accepted that when securing or insuring a jewelry store the security expenses and the premiums would be related to the Carat value of the jewels in the store. A fake jewelry store...