HIPAA Compliance

The Health Insurance Portability and Accountability Act of 1996 (HIPAA) outlines the minimum standards that need to be met to ensure the confidentiality, privacy, and security of health care information in the Internet environment. HIPAA requires that all health related data transferred over the Internet be done using industry standard encryption protection.


Cerberus FTP Server meets the requirements for HIPAA-compliant file transfer.

Cerberus FTP Server provides all of the tools necessary to allow you to operate your own HIPAA compliant file transfer system.

Provides the necessary access controls to ensure that data is not accessed by unauthorized users.
Configured by default to require a minimum 128-bit encryption on all connections to ensure that data in motion is always protected. Information can be further protected by enabling Cerberus FTP Server’s FIPS 140-2 encryption mode.*
Provides full logging and auditing of all file activity. Access control can be fully configured per user, password policy restrictions enforced, and each user can be assigned individual, distinct home directories.

*Available on our Professional and Enterprise editions — this is required by HHS guidelines to comply with the HITECH act’s data breach notification mandate.

Click here to find more information on HIPAA requirements.