Raising user awareness (cf: SHEET 1 CNIL GUIDE)
This is not a trivial task and to raise awareness the tool must be designed for this purpose :
- When using a function that allows a document to be sent without authentication for the recipient, they must be told every time (awareness is repetition) that they are taking a risk and that, in this context, this sending does not comply with HDS certification or ISO 27001 certification.
- The tool must meet modern / user friendly ergonomics to make users adhere to the use of strong authentication without the feeling of performing a complex operation. BlueFiles has a full web html5 responsive interface, an Outlook add-in and a dedicated api for automated uploads to simplify use as much as possible.
Authenticate users (cf: SHEET 2 CNIL GUIDE)
Management of shared accounts : if your users/departments use shared accounts on your current solution without proper identification it is simply forbidden for health and personal data (see sheet 2). As this service is very useful and often structuring for a specific organization, BlueFiles allows you to manage shared accounts in compliance with the law with each user's own identifier (even if they don't have their own email box).
Does your current solution allow users (sender and recipient) to :
- Set up a two-factor authentication (by TOTP)
- Force a strong authentication (2 factors) for a given sending