HIPAA compliant audit trail in FileCloud
Health Insurance Portability and Accountability Act (HIPAA) mandates security and privacy standards for health information. Everyday employees within your organization end up accessing and working on multiple files and folders within your network. HIPAA requires that you provide an audit control to record and examine their activity.
Did you know when you use FileCloud as your enterprise File Storage and Access solution you automatically get HIPAA compliant audit trail?
Yes, FileCloud monitors and records each operation on data stored in FileCloud.
FileCloud audit support identifies and records who (Username) did what (access, modify, delete, add etc) to what data (Files, Folders, User List etc), when (date and timestamp) and how (Web, mobile, Sync Client, Drive etc).
Additionally, FileCloud admin website facilitates administrator to access the audit trail.
How to enable audit trail?
TONIDOCLOUD_AUDIT_LOG_LEVEL parameter in the FileCloud General Configuration can be set as follows to suit your requirement.
OFF – No activity is logged.
REQUEST – Incoming requests are logged.
FULL – Both incoming requests and outgoing response are logged.
How to view audit trail?
In the admin website, click the Audit link on the left menu to view the audit screen. The audit log can be filtered by date range, username and operation. The common operations include: create account, login, upload, getfilelist (browse), create folder, delete, download file, share file or folder. However, you can view audit of all operations by choosing all. The audit log results can be exported to a CSV file. The audit log will provide username, IP address, user agent, log date and time stamp, how the resource was accessed, complete request and response in JSON format.
The request and response data stored in JSON format in FileCloud can be viewed easily in any json parser such as http://json.parser.online.fr/
For more information on audit support in FileCloud you can review our support site