Compliance Features

Comprehensive Compliance Across Multiple Industry Standards


eFax Corporate is PCI-DSS Compliant and uses v.3.2 encryption requirements. This means that faxes in transit and at rest are secured with the strongest encryption approved by the National Institute of Standards and Technology (NIST).

Additionally, eFax’s PCI-DSS compliance ensures that businesses that process, store, or transmit credit card information maintain a secure environment. This level of security is imperative for businesses in the finance sector, e-commerce companies, and any organization that deals with credit card payments.



eFax demonstrates a strong commitment to ensuring compliance with the Gramm-Leach-Bliley Act (GLBA). eFax provides a feature-rich fax solution that directly supports GLBA compliance efforts through improved document management and secure data transmission.

Using advanced AES 256-bit encryption, TLS 1.2, and SSAE16/SOC2 certified data centers, businesses can rest assured that all digital faxes sent and received are secure and compliant with GLBA requirements.


SOC Compliance

eFax Corporate adheres to the rigorous standards of the Service Organization Control (SOC) protocols. These protocols offer an authoritative benchmark for the practices of businesses handling sensitive data. eFax’s compliance with SOC protocols is validated by third-party auditors, ensuring an unbiased and thorough evaluation of our controls and practices.

eFax leverages SOC 1 and SOC 2 compliance to assure our system’s reliability and the effectiveness of our internal controls. These parameters focus on protecting and safeguarding customer data and maintaining its confidentiality and privacy. This allows businesses to confidently use our digital fax solutions, knowing their sensitive information is handled with the highest level of security and compliance in mind.



With SOC2 compliance, businesses can ensure that all their protected data is stored securely and handled with the utmost care. Not only does this ensure customer data safety, but it also reinforces customers’ trust in a company’s products and services.

eFax Corporate understands the importance of SOC2 compliance and has implemented measures to satisfy its requirements. Businesses can trust that their important information is safe by maintaining secure data collection and storage protocols, data transmission, user authentication, system access control, and other aspects of our digital fax solutions.


HIPAA Compliance

eFax demonstrates a strong commitment to the healthcare sector’s needs by ensuring its electronic faxing service is HIPAA-compliant. HIPAA (Health Insurance Portability and Accountability Act) mandates strict standards for the secure transmission and storage of protected health information (PHI) to safeguard patients’ data.

Recognizing the criticality of these standards, eFax has implemented robust security measures. These measures include high-grade encryption for both transmission and storage of faxes, secure access controls, and comprehensive audit trails. eFax is also willing to sign Business Associate Agreements (BAAs) with healthcare providers, ensuring legal and regulatory compliance in handling and managing PHI.



eFax goes above and beyond in ensuring its commitment to data protection and security by acquiring the HITRUST Certification. The HITRUST Common Security Framework (CSF) is a rigorously detailed set of security controls that integrates various cybersecurity standards, including HIPAA, NIST, and ISO, offering a comprehensive benchmark for safeguarding sensitive data and ensuring regulatory compliance. 

eFax’s attainment of the HITRUST Certification signifies that its electronic faxing platform meets these stringent security standards, showcasing its dedication to preserving the confidentiality, integrity, and availability of its users’ data.


Start Building with the eFax Platform

HIPAA + BA Compliance

In today’s digital age, safeguarding data, particularly sensitive health information, is paramount. For this reason, eFax has been meticulously designed to meet the stringent standards set by the Health Insurance Portability and Accountability Act (HIPAA) and the Business Associate (BA) agreement. Regardless of the healthcare documents you transmit, eFax guarantees the highest protection of your business and client data.

The eFax Commitment to Compliance

We are excited to announce that eFax Corporate®, our top-tier cloud fax solution for enterprises, has successfully obtained the prestigious HITRUST Common Security Framework (CSF) certification. This significant achievement demonstrates our unwavering dedication to maintaining the utmost level of security and compliance for our customers.

Additional Compliance Features

Feature Benefits


AES 256-bit encryption for digital faxes


TLS 1.2 encryption for transmission of digital faxes


HITRUST CSF® Certified


Regulatory compliance for HIPAA, SOX & GLBA


Highly secure data centers maintaining current SSAE16 and SOC2 certifications

Relevant eFax Solutions

Healthcare Providers

eFax helps healthcare providers meet federal privacy standards with HIPAA fax solutions that are cloud-based, secure and cost-effective.

Legal Firms

Legal firms handle a substantial volume of sensitive documents daily. eFax helps law firms stay compliant and meet eDiscovery requirements.

Financial Institutions

Financial institutions trust eFax for secure faxing of confidential client documents and sensitive financial data.