Are files and data safe using enterprise Box?

Box adheres to industry standards for security at every level and commits extensive resources to the design, implementation, monitoring, and maintenance of its security infrastructure, including:

  • Data encryption
  • Administrative auditing
  • Password policy enforcement and AD/LDAP integration
  • Role-based access controls
  • Password- and time-based file sharing

Additionally, all files are encrypted and stored on servers in the United States. Redundant encrypted copies of the files are stored as backups on servers at a different geographical location in the United States. Per the Internet2 NET+ contract with Box, data stored in Box, including user information, cannot be "data mined", nor may it be shared with any third party.

For more, see Box's Enhanced Security.

When using Box for collaborating and sharing files with others, be sure to review the settings carefully to ensure that you're allowing the level of access you intend. See Sharing and collaborating on files with Box.

If you have questions about Box's security, contact boxinfo@iu.edu.

Important:
Box at Indiana University is not appropriate for storing or sharing most types of institutional data classified as Critical. However, with certain additional security measures you may be able to use IU Box with some data that contain protected health information (PHI) regulated by the Health Insurance Portability and Accountability Act of 1996 (HIPAA). For more, see What types of data are appropriate for my IU Box account?

This is document bbvm in the Knowledge Base.
Last modified on 2017-08-15 11:20:29.

  • Fill out this form to submit your issue to the UITS Support Center.
  • Please note that you must be affiliated with Indiana University to receive support.
  • All fields are required.

Please provide your IU email address. If you currently have a problem receiving email at your IU account, enter an alternate email address.

  • Fill out this form to submit your comment to the IU Knowledge Base.
  • If you are affiliated with Indiana University and need help with a computing problem, please use the I need help with a computing problem section above, or contact your campus Support Center.

Please provide your IU email address. If you currently have a problem receiving email at your IU account, enter an alternate email address.