MOVEit Transfer keeps data secure during transfer as well as during storage and in so doing satisfies comprehensive compliance requirements – an aspect that is crucial particularly in the context of the European General Data Protection Regulation (GDPR) that is coming into effect on May 25, 2018. The solution allows administrators to find out not only about the status of the files at any time but also about the file movements. The product provides a visualization of all the interactions and makes it possible to retrace the transfer of important data between the various points. In addition to that, the system also provides automatic file integrity verification.
The server operates directly on the customer’s premises and therefore acts as a private cloud, enabling the transfer of data between individuals, between individuals and systems, and between systems and other systems. MOVEit Transfer uses an FIPS 1402validated AES256 algorithm to encrypt the data. The users have policies at their disposal which they can use to control all file movements. For example, this therefore makes it possible to obtain confirmation that the file transfers have indeed taken place. There is even the option to find out from which computer the file was downloaded. If required, the system also supports special platform configurations.
As already mentioned, MOVEit Transfer tracks all data transfers. This is achieved using a database that has been protected against unauthorized modification – but more on that later. The product satisfies the requirements of ISO 27001, HIPAA, PCI, EUDSGVO, SOX, Basel I, II and III as well as FIPS, FISMA, GLBA, FFIEC and ITAR, among others. If the MOVEit Transfer server is intended to be used in a corporate LAN, Ipswitch also provides the Progress® MOVEit® Gateway, which can be set up in the DMZ, where it can perform the task of securely forwarding external data connections to the MOVEit Transfer server.