Comprehensive Compliance Across Multiple Industry Standards


HIPAA + BA Compliance

In today’s digital age, safeguarding data, particularly sensitive health information, is paramount. For this reason, eFax has been meticulously designed to meet the stringent standards set by the Health Insurance Portability and Accountability Act (HIPAA) and the Business Associate (BA) agreement. Regardless of the healthcare documents you transmit, eFax guarantees the highest protection of your business and client data.

The eFax Commitment to Compliance

We are excited to announce that eFax Corporate®, our top-tier cloud fax solution for enterprises, has successfully obtained the prestigious HITRUST Common Security Framework (CSF) certification.

This significant achievement demonstrates our unwavering dedication to maintaining the utmost level of security and compliance for our customers.


AES 256-bit and TLS 1.2

Military-grade encryption and maximum security protocol sed by endpoint devices to authenticate and encrypt data securely

Storage Security

HITRUST CSF® Certified

Integrates rigorous security controls from HIPAA, NIST, and ISO standards, with a comprehensive benchmark to safeguard sensitive data

HIPAA Compliance


Secure transmission and storage of protected health information (PHI) to safeguard patient data


SOC 1 & 2

Ensures system reliability, effective internal controls, and protection of customer data


eFax demonstrates a strong commitment to the healthcare sector’s needs by ensuring its electronic faxing service is HIPAA-compliant. HIPAA (Health Insurance Portability and Accountability Act) mandates strict standards for the secure transmission and storage of protected health information (PHI) to safeguard patients’ data.

Recognizing the criticality of these standards, eFax has implemented robust security measures. These measures include high-grade encryption for both transmission and storage of faxes, secure access controls, and comprehensive audit trails. eFax is also willing to sign Business Associate Agreements (BAAs) with healthcare providers, ensuring legal and regulatory compliance in handling and managing PHI.

Learn More About HIPAA Compliance


eFax demonstrates a strong commitment to ensuring compliance with the Gramm-Leach-Bliley Act (GLBA). eFax provides a feature-rich fax solution that directly supports GLBA compliance efforts through improved document management and secure data transmission.

Using advanced AES 256-bit encryption, TLS 1.2, and SSAE16/SOC2 certified data centers, businesses can rest assured that all digital faxes sent and received are secure and compliant with GLBA requirements.



eFax Corporate is PCI-DSS Compliant and uses v.3.2 encryption requirements. This means that faxes in transit and at rest are secured with the strongest encryption approved by the National Institute of Standards and Technology (NIST).

Additionally, eFax’s PCI-DSS compliance ensures that businesses that process, store, or transmit credit card information maintain a secure environment. This level of security is imperative for businesses in the finance sector, e-commerce companies, and any organization that deals with credit card payments.


SOC Compliance

eFax Corporate adheres to the rigorous standards of the Service Organization Control (SOC) protocols. These protocols offer an authoritative benchmark for the practices of businesses handling sensitive data. eFax’s compliance with SOC protocols is validated by third-party auditors, ensuring an unbiased and thorough evaluation of our controls and practices.

eFax leverages SOC 1 and SOC 2 compliance to assure our system’s reliability and the effectiveness of our internal controls. These parameters focus on protecting and safeguarding customer data and maintaining its confidentiality and privacy. This allows businesses to confidently use our digital fax solutions, knowing their sensitive information is handled with the highest level of security and compliance in mind.


With SOC2 compliance, businesses can ensure that all their protected data is stored securely and handled with the utmost care. Not only does this ensure customer data safety, but it also reinforces customers’ trust in a company’s products and services.

eFax Corporate understands the importance of SOC2 compliance and has implemented measures to satisfy its requirements. Businesses can trust that their important information is safe by maintaining secure data collection and storage protocols, data transmission, user authentication, system access control, and other aspects of our digital fax solutions.


eFax goes above and beyond in ensuring its commitment to data protection and security by acquiring the HITRUST Certification. The HITRUST Common Security Framework (CSF) is a rigorously detailed set of security controls that integrates various cybersecurity standards, including HIPAA, NIST, and ISO, offering a comprehensive benchmark for safeguarding sensitive data and ensuring regulatory compliance.

eFax’s attainment of the HITRUST Certification signifies that its electronic faxing platform meets these stringent security standards, showcasing its dedication to preserving the confidentiality, integrity, and availability of its users’ data.


eFax Protect

Protect: eFax Protect allows you secure faxing with 256-bit AES encryption and HIPAA, SOX and GLBA regulatory compliance. With a mobile application, no additional hardware (read: fax machines) and free online storage, eFax Protect meets your business compliance needs. You can fax by email and even share large files.

eFax Corporate

eFax is specifically designed to cater to the needs of businesses. Whether you’re a large enterprise or a smaller business, eFax Corporate offers a comprehensive set of fax features that comply with regulatory standards like HIPAA, GLBA, SOX, PCI. We prioritize security with 256-bit TLS encryption and Tier-3 secure servers, ensuring our cloud-based faxing service is flexible, scalable, and secure.

Start Building with the eFax Platform

Related FAQs

See All FAQs

Yes, eFax takes the security and privacy of your documents very seriously. We use the strongest encryption methods available to protect your faxes, and our servers are regularly monitored to ensure the highest level of security.

Another type of software that can be integrated with your toll-free number is speech analytics software. It inspects audio recordings or live consumer calls for words or audio patterns that may indicate emotion or tension in the speaker’s voice. The data extracted from this analysis can subsequently be studied to provide insights on agent performance, client behavior, the customer experience, and service or product shortcomings. This data can also be shared to increase productivity, service and cooperation across your organization.

The GV platform doesn’t receive faxes directly. But when used in conjunction with an online fax service, you can receive faxes using your Google Voice number.

While there are many apps that allow you to sign a PDF at no cost, these apps aren’t always as secure or as reliable as you need. Rather sign up for a free eFax trial to add a signature to a PDF document or download one of the PDF readers or editing apps on the Android Google Play store or Apple App store. 

From there, you simply upload your PDF and draw, upload or type your signature where you need to. Some PDF signature providers allow recipients to sign PDFs for free if the sender has a paid subscription. Always make sure your PDF document is secure and trusted before adding signatures or other personal data. 

Explore the Other eFax Platform Pillars

Customer Service Customer-Service


Cost Cost

Cost Value

Reliability Reliability


Compliance Compliance


Interoperability Interoperability