|
ZSentry for Google Apps and Gmail
Adds HIPAA and HITECH
Safe Harbor compliance to Google Apps & Gmail, already integrated with Mail and Single Sign On. Works with
your email address, including Gmail, Yahoo and Microsoft webmail, also in the desktop, tablet and phone. Send and
receive secure email and files as easily as with regular email, anywhere, anyway. Purpose: Uses Google Apps or Gmail, without any service changes. After a simple setup, users can
securely send, store, and read emails & files anywhere, anyway. Always
up-to-date, there is no installation, download, plugins, or add-ons.
I send them as quickly as regular email and also save FedEx costs. Pricing: Starts at $4.99 with pay-as-you-go, no subscription,
Premium service. Bundled Desktop, Web, Cloud, and Mobile use. No additional purchase of end-user CA certificates, Postini, add-ons, or plugins.Already integrated with: Apple iCloud, iPad and iPhone, Gmail & Google Apps,
Yahoo Mail, Microsoft Hotmail & Live, AOL Mail, and more. Time estimate: after you setup the first account, it should take no more than a couple minutes to manually setup another account. Setup can also be automated if desired.
ZSentry Cloud (ZSentry for Google): improves, secures, and aggregates user's services on the desktop, phone, or web browser.
Without any service changes, users can send, store, and read secure, HIPAA compliant data
on multiple platforms, all at once. User services include email, webmail, SMS, IM, file storage,
and single-sign-on. ZSentry works with leading solutions including Google Apps, Outlook, and iPad.
Google Apps is the first suite of cloud computing messaging and collaboration applications to receive Federal Information Security Management Act (FISMA) certification and accreditation from the U.S. General Services Administration.
Even though Google Apps is not by itself HIPAA compliant, with ZSentry for Google you can now easily send and receive HIPAA-compliant secure email using Google Apps or Gmail. Further, ZSentry for Google complies with HITECH Safe Harbor, which reduces liability for everyone and eliminates the requirement of signing a Business Associate Agreement.
ZSentry also adds critical document management functionality to Gmail and Google Apps, such as Self-Destruct, Return Receipt, and Secure Vault. The Secure Vault copy can be provided with secure off-line access, allowing archived electronic records to be decrypted locally even if there is no network access. These functions
are important in terms of business practices and also HIPAA and regulatory compliance requirements.
How it Works: You select the ZSentry secure email account in the From drop-down list, and click Send
. To read and reply to a secure email, you click Read. This works in the Gmail or Google Apps screen, or in a Mail Client using your Google account.
In depth:
 How does ZSentry work with Google Apps and Gmail? Single-Sign-On?
From the end user's point of view, after setup, ZSentry Single-Sign-On (SSO) is
invisible, just as with an installable Google App. The user is logged in to Google Apps, going about a task, and then
decides to send a secure email. The user clicks Compose and sees a drop-down list for the 'From' address. The user
selects the 'From' address that uses ZSentry, writes the email, then clicks Send. That's all! The email is sent
encrypted, securely, with all the ZSentry options. The SSO operation occurs behind the scenes, in-between clicking Send
and the email being actually sent. If the user notices anything, it will be the absence of an intermediate login step.
Behind the scenes, when you click Send in Google Apps, your email is protected by ZSentry using encryption and authentication before transmission (by
Google-ZSentry server-to-server authenticated SSL/SMTP), and will be delivered encrypted per-message, end-to-end (by ZSentry). You
receive ZSentry secure email at your own Inbox (in Gmail, Google Apps, or in a Mail Client using your Google account),
can read & reply securely, and avoid online breach notification liability. How this works internally at ZSentry?
There are well-known and recognized standards for encryption of email, including ITU-T and IETF X.509/PKI with S/MIME,
and PGP with or without PGP/MIME encoding. ZSentry was developed after these standards and improves upon them in both
usability and security. ZSentry reduces the requirements in four critical areas, as mentioned in the ZSentry FAQ (see item
"Why is ZSentry secure?"). Thus, from the technical viewpoint, standard encryption technology with the unique
ZSentry Sans Target method keeps email safe and HITECH Safe Harbor compliant, sending data between parties as regular
email without pre-arranged passwords. Even Google can't read or scan it. It doesn't require
installation of any software, which promotes usability, and it even adds functionality such as self-destruct, with
message level access control. It's also free for patients and personal use. Price starts at $4.99. This item includes online contributions by the community.
This answer is not specific to Gmail and applies also if you send a ZSentry mail to
user@yahoo.com or any other address. They receive ZSentry secure email at their own Inbox (in Gmail, Google
Apps, Yahoo, or in a Mail Client). Both you, the sender, and the recipient can choose how they can read it, within your
different roles. Suppose the sender chooses 'Automatic Skin', which is the default. The recipient gets a link to see an
encrypted copy in the browser, and may also get a link to read the email directly in a Mail client (including Outlook,
Apple Mail), where in both cases the recipient can reply securely with the From address that uses ZSentry.
Alternatively, the sender can choose a different Skin and send the whole message encrypted, not just a link. How
does Gmail or Yahoo know how to decrypt the message? The link in Gmail or Yahoo connects in SSL to zsentry.com where
the request is processed according to the sender's delivery request: for example, recipient must login. Or, recipient's
mailbox must be authenticated. In each case, the sender may allow reading only until expiration (self-destructing
afterward), request a return receipt with Who, Where, When, What, How information, and request other options such as to
send back a secure archive copy that does not expire. This item includes online
contributions by the community. 
Government Use: Google Apps FISMA review makes it easier for federal agencies to compare standard
security features to those of their existing systems; most agencies that Google has worked with have found that Google Apps provides at least equivalent, if not better, security than they have today. This means government customers can move to the cloud with confidence using Google Apps, and now become HIPAA compliant with ZSentry.
ZSentry Cloud also works with Google Apps for Government, which provides segregated systems for US government customers, with data stored in the US only. Further, to allay privacy and HIPAA concerns, you can manually, or by means of a
Google filter,
delete all plaintext copies of messages sent through ZSentry (see How-To #3).
Mobile Use: ZSentry works with Gmail Mobile and mobile devices, including iPad and Phones. ZSentry helps prevent privacy leaks with apps and passing
along information to third parties, and includes protection against keyboard cache files. Read more
Additional Use: ZSentry also works with Yahoo Mail, Microsoft Live, Hotmail, other providers and email addresses,
using an organization's domain name, SMS, IM, PKI/X.509 and PGP.
See how easy it is: ZSentry for Google How-To
Read
the Reviews >>
Get the Benefits >>
Reviews
 Easy, Reliable, Cheapby Nicholas Molyneux Sounds too good to be true? It's real.
I set this product up on our domain in about 30 minutes and could not be more impressed with it. Easy: The ease of use makes my job so much easier. When researching a product for secure emails, one of my biggest concerns was complication. I have to teach my users how to use the product and truth be told, not everyone is an IT professional. After setting this up in Google Apps, the user simply chooses whether or not to send the message securely... that's it. Reliable: I've yet to have one failed email. Cheap: It's free if you don't use it that often, otherwise there are some pretty flexible and extremely cheap plans.
Great way to send HIPAA compliant data via emailby Micha I have a solo medical practice and I need to send about
10 to 18 attachment voice files to my transcriptionist each
day. In turn she needs to send me the transcribed versions
of the files. Overall it is working nicely. No problems sending
or receiving information.
Compliant solution that is easy for me and easy for my customersby Lee Deskins, CLU I am a health insurance consultant. HIPAA compliance is very important in my practice. I was looking for a HIPAA compliant Google Apps solution that was easy for me and easy for the recipient. Zmail by ZSentry is that solution. I work with many insurance carriers and they all use different systems with different password requirements. I have not had one person have trouble accessing the data I send them and they can reply or attach additional data securely from that email. It is relatively easy to set up and very flexible. When I had questions customer support was very responsive.
Benefits
- ZSentry is complementary to Google Apps & Gmail, and is standards-compliant so that it operates with all versions of Google Apps including Google Apps for Government without changes, plugins, or installation.
- ZSentry encrypts all data stored and transmitted via Google Apps and Gmail, per message and such that Google administrators or anyone breaking into your Google account would never be able to read the protected health information (PHI).
- ZSentry enables both HIPAA and HITECH Safe Harbor compliance, with no HIPAA Business Associate Agreement to
sign.
- Send and receive ZSentry secure email directly with a Mail Client (such as Outlook, Thunderbird, iPad) for
Google Apps and Gmail addresses, which offers the HITECH Safe Harbor benefit of not leaving (even temporarily) a plaintext cache for emails that are sent using Google.
- ZSentry adds document lifecycle management according to your business and health-care policies, for comprehensive federal and state regulation compliance.
- In addition to HIPAA and HITECH Safe Harbor, ZSentry enables Gmail and Google Apps use in compliance also with GLBA, SOA, and financial regulations.
- Recipients can read securely without registration with Gmail, Google Apps, or ZSentry.
- ZSentry works seamlessly cross-platform for reading & replying, providing intuitive and secure one-click use
with Gmail or Google Apps. A first link is marked for web browsers (no setup); a second link opens in Desktop and Mobile
Mail clients (may need setup).
- ZSentry is a "no-target" technology that eliminates the online copy and storage of passwords and keys, thus
eliminating major risk factors in protecting servers and clients against breaches due to penetration
attacks.
- ZSentry leapfrogs today's cloud security solutions. Companies that
could be nervous about trusting their emails and trade secrets to a cloud solution today can, instead, use
ZSentry's "no-target" technology to allay disclosure concerns due to breaches in using Gmail, Google Apps, and other online
solutions.
- You will be asked to provide both your ZSentry
Usercode and Password to Google, to enable the service. This will be done using SSL and should
be treated securely by Google, as a secret "password". The very large variety of the ZSentry
Usercode, with unpredictable values, will further help protect and harden your ZSentry Password from brute force
attacks, as an attacker would have to guess both correctly at the same
time.
- The ZSentry SMTP server starts SSL before any data is exchanged, and never uses
plaintext.
- Uses two-factor authentication and certifies both your Name and Email Address before a message is
sent or read.
- Encrypted Address Book with automatic key management.
|
