Echoworx provides a managed encryption service to protect confidential information from prying eyes, and makes the encryption of digital information easy. Echoworx is Deloitte, Microsoft, CCTM and PCI certified. It works as a SaaS model that is built on best-of-breed technology. Echoworx is the encryption service provider of choice for leading security software, telecommunications and hosted exchange providers, including BT Global Services, Symantec Hosted Services, AT&T, McAfee, Verizon, and Apptix, among other global businesses.

Data loss poses a serious problem for companies as the numbers of incidents continue to increase rapidly. One of the biggest areas of data loss is through email as employees distribute confidential information to third parties such as vendors and customers. Traditionally DLP providers have focused solely on internal files and information, but this does not address the leakage of sensitive data that results from email communications.

With the advent of a mobile society and the digital sharing of confidential information, it is more important than ever to encrypt confidential data that is constantly on the move.

Public Key Infrastructure or PKI is the industry-trusted and proven encryption technology that allows email users to digitally encrypt email message ensuring that only the intended recipient can read the message.

Messages are decrypted using two keys (small files): one is public and is used by the sender to encrypt the message, and the other is private and used by the recipient to decrypt the message.

User: The user simply composes an email as they normally would and the content and attachments are automatically scanned to detect whether the message should be encrypted or otherwise processed before it is sent. (These encryption complexities are hidden from the user.)

Administrator: The administrator uses a powerful web-based Administration Console to set, review and customize the organization’s privacy policies so confidential content is automatically encrypted. To assist the administrator with compliance, built-in features include a wide variety of commonly used rules, dictionaries and expressions. In addition to encrypting messages, administrators can monitor all messages and reject those that do not comply with company policies and procedures.

The recipient can view the message in two ways: directly from their inbox using the Encrypted Mail Reader or they can pick up their messages from a secure web portal.

Reader: Using the Encrypted Mail Reader, encrypted messages arrive in the user’s inbox as an attachment to a regular message. To decrypt the message the user is prompted for their password. The recipient can send an encrypted response to the message with an attachment via the Encrypted Reader.

Web Portal: If using the portal the recipient will be notified that an email has arrived and they have 30 days to pick up their message. First-time users are then required to register. Once the account has been set up all subsequent messages are decrypted with a password. Within the portal they can then send encrypted messages and attachments back to the sender or to anyone else using the same domain i.e. other people within the same company.

Encrypted Mail Reader is a downloadable software that can be used to open and view encrypted documents.

Yes, any message sent from a mobile device that passes through the Encrypted Mail Gateway is subject to your organization’s outbound email encryption policies.

Yes, messages sent from an Outlook Web Access (OWA) client or any other web-based email client that passes through the Encrypted Mail Gateway is subject to your organization’s outbound email encryption policies.

Messages are typically delivered within 1 to 2 minutes after they are sent.

There is no limit.

Yes, Encrypted Mail Gateway allows for multiple domain deployment. This enables multiple domain names (or multiple organizations) to share the same deployment with separate sets of rules.

The service can be enabled for certain individuals, groups or domains within an organization.

The analytics tool keeps track of every single message that has been processed and provides a snapshot of the system through summary diagrams. Detailed searchable reports identify important information such as the most flagged policies, the highest offenders, top keywords and the percentage of flagged messages.

A Global Directory is a unified repository of digital identities that removes the technology barriers for a seamless exchange of encrypted email. Just like a telephone book holds telephone numbers, the Global Directory holds public keys of all subscribers. Echoworx has a global directory as well as goes one step further and supports all third party S/MIME keys. More …

Yes, Encrypted Mail Gateway supports third party S/MIME or PGP credentials to accommodate automatic encryption/decryption of messages at the gateway.

This enables users to easily communicate with anyone even if they are not in the Global Directory.

An S/MIME or Secure/Multipurpose Internet Mail Extensions is a standard for public key encryption and signing of MIME data.

Typical deployments take 3 to 5 days from start to finish. While the service can literally be turned on in minutes, organizations deploying the service will need to allocate resources to establish a TLS (Transport Layer Security) connection, configure encryption policies, and brand the service.

Encrypted Mail Gateway will run on any platform. Various deployment options are available based on the organization’s preferred configuration. It is also available as a VMWare Virtual Machine, which makes deployment easy for companies using VMWare servers.

Encrypted Mail Gateway leverages the Echoworx Encryption Services platform. This robust and proven carrier-grade platform resides in high-availability data centers operated by world class application service providers. These data centers optimize data communications, message processing and storage of large volumes of data, and offer fully redundant and uninterrupted service levels to users around the world.

Echoworx supports 14 languages: English, German, Spanish, French (Canada), French (France), Italian, Dutch, Japanese, Korean, Portuguese (Brazilian), Portuguese (Portugal), Russian, Chinese (Traditional), and Chinese (Taiwanese).

A growing number of jurisdictions implement legislation to protect the storage, transfer and usage personal information. With the introduction of privacy legislation, organizations have no choice but to comply and take steps to protect their confidential information. These include:

• Health Insurance Portability & Accountability Act (HIPAA)
• Sarbanes-Oxley Act (SOX)
• Gramm-Leach-Bliley Act (GLBA)
• California Security Breach Notification Act (CB 1386)
• Payment Card Industry Data Security Standards (PCI DSS)
• Personal Information Protection and Electronic Documents Act (PIPEDA)
• EU Data Privacy Protection Directive

The consequences of non-compliance can be severe, from significant fines to loss of business. T.J.Maxx for example was ordered to pay more than $40 million in settlement payments with Visa and the credit card processing bank, and the hacker given a 20 year prison sentence. The Information Commissioner’s Office (ICO), the UK’s independent authority responsible for data privacy, has the power to issue penalties of up to £500,000 to organizations in breach of the Data Protection Act.