Compliance and Audit Trails

• Configuring Compliance Settings

  (If your Encyro account is part of an organization, see organizational compliance settings.) To enable or edit compliance settings, go to your account Sett...

• How do I see my account Audit Trails (Activity Logs)?

  My compliance standard requires me to review audit trails or activity logs. Where can I find my Encyro account activity logs? What will see in my audit tra...

• Can I enable compliance if I login using my Google/Facebook account?

  You will be required to create an Encyro account password to enable the following compliance settings: Require strong password for account login. Automatic...

• What country does Encyro operate from?

  Encyro Inc is based in the United States of America, and is subject to US laws and regulations.  Your data in your Encyro account is stored in our data cen...

• Encyro's AICPA SOC2 Compliance

  Encyro maintains and monitors compliance with trust service criteria established by the AICPA as part of the SOC2 standard for service organizations. Encyr...

• Is Encyro HIPAA Compliant?

  Can I use Encyro for HIPAA compliance? Can I store and send patient information using Encyro? Encyro complies with Health Insurance Portability and Account...

• Do you Sign a BAA?

  Encyro will sign a Business Associate Agreement (BAA) as required under HIPAA Privacy Rule sections 45 CFR 164.502(e), 164.504(e), 164.532(d) and (e). Ency...

• IRS Pub 4557 Compliance for Tax Practitioners

  IRS Publication 4557 provides seven checklists for tax preparers to help protect tax clients' tax data. The safeguards also protect your business from a da...

• Gramm Leach Bliley (GLB) Act Compliance

  The GLB Act of 1999 and the Safeguards Rule of 2002 require all financial service providers to protect their customer's financial privacy and is enforced b...

• FINRA Compliance

  Encyro helps you comply with FINRA cyber-security requirements is the following ways: Encyro maintains the confidentiality and integrity of data as require...

• PCI-DSS

  PCI-DSS requires safeguarding credit card data that you receive. Email is not a secure way to ask a customer to provide their credit card information to se...

• SEC Regulations

  The SEC Regulation  Title 17: Chapter II, Part 248, Subpart A: §248.30 requires every broker, dealer, and investment company, and every investment adviser ...

• NIST 800-171 Compliance

  National Institue of Standards and technology (NIST) Special Publication 800-171 or NIST-SP800-171, specifies requirements for non-Federal computer systems...

• DFARS compliance

  Can I use Encyro to store data subject to Defense Federal Acquisition Regulation Supplement (DFARS) compliance, or data security regulations subject to def...

• GDPR Compliance

  The General Data Protection Regulation (GDPR) of 2018 applies to all businesses that collect any data from customers or clients in the European Economic Ar...

• Will Encyro sign a GDPR Data Processing Agreement (DPA) with my business?

  Yes, Encyro does sign DPAs.  A Data Processing Agreement (DPA) may be required for you under GDPR Article 28, section 3, to support your use of an external...