Ensure data security and compliance with IDrive® e2

Handling the processing of sensitive and personal data in compliance with security and privacy requirements is the top-most priority for businesses. IDrive® e2 is a secure and reliable object storage solution that incorporates robust measures for protecting the integrity, confidentiality, and availability of electronic information while ensuring regulatory compliance effectively. IDrive® e2 addresses the data security and privacy concerns and assists your company by employing the following measures:

  • All electronic data, including account passwords and other sensitive information, is encrypted with TLS protocol during transfer.
  • Two-factor authentication adds an extra layer of security, protecting against any unauthorized access.
  • Strong server-side encryption for protecting objects while storing them in buckets.
  • Detailed activity logs of your account are maintained for auditing and security purposes.
  • S3 access keys for secure access of buckets and objects.
  • Protection against data losses from malware and cyber-attacks with object lock, data retention, and versioning.

IDrive® e2 complies with industry and government standards and regulations:

HIPAA Compliance

The Health Insurance Portability and Accountability Act (HIPAA), provides directives on administrative, physical, and technical safeguards for patient data and records. The security and privacy measures implemented by IDrive® e2 assist businesses in the healthcare domain to meet HIPAA compliance. Users are solely responsible for any files accessed or transferred.

Privacy Policy

GDPR Compliance

The General Data Protection Regulation (GDPR) is a European Union regulation that is aimed at protecting the personal data of EU citizens. IDrive® e2 uses the best practices and technologies to ensure the highest standards of data security and privacy of personal data.


The Securities and Exchange Commission / Financial Industry Regulatory Authority, have instituted regulations that demand compliance surrounding the storage of financial records and electronic communications. Financial organizations can leverage the data immutability capability of IDrive® e2 to create immutable copies of files that comply with the SEC/FINRA guidelines.

PCI Compliance

Businesses that handle cardholder information are required to comply with the Payment Card Industry Data Security Standard. IDrive® e2 is PCI compliant and it does not store any credit card information or financial data. IDrive® e2 uses third-party vendors to store and manage cardholder data and conduct online transactions.

SOC 2 Type 1/ SSAE 16

Statement on Standards for Attestation Engagements (SSAE) 16 is an auditing standard for service organizations on reporting compliance controls. IDrive® e2 has completed the necessary audits and can provide supporting documentation to demonstrate that it meets the standards defined by SSAE 16.

FIPS Compliance

Federal Information Processing Standards Publication (FIPS) compliance is a requirement for cryptographic products/software used in the USA. IDrive® e2 uses FIPS-approved encryption algorithms and adheres to physical security. It ensures the confidentiality and integrity of the data remains intact.

Data Center Security

Our data centers are SOC 2 Type 2 compliant. Your data is stored in enterprise-class data centers equipped with state-of-the-art facilities — custom-designed elevated floors, HVAC temperature control systems with designated cooling zones, seismically-braced racks — and advanced physical security features.

Business Associate Agreement

The IDrive® e2 Business Associate Agreement adheres to federal government standards and is available on request to users. Fill your details in the form below to place a request for the IDrive® e2 business associate agreement.

  • Associate Details
  • Mailing Address