SecureTransport acts as the governed backbone for automated, high-volume exchanges (e.g., bank-to-bank statements). Syncplicity provides the user-facing layer for employees sharing files internally/externally under IT control. 3. Compliance Framework Mapping Axway explicitly maps its features to major regulations—a critical evaluation point.
The interface and policy engine are complex for non-technical users. For simple compliant sharing, it is overkill and expensive. 2. Product Portfolio for Compliant File Sharing Axway’s compliant file sharing rests on two pillars: SecureTransport acts as the governed backbone for automated,
| Regulation | Requirement | Axway’s Capability | | :--- | :--- | :--- | | | Right to erasure, data portability, breach notification | Syncplicity supports retention policies and user deletion; SecureTransport logs can be exported for DSARs. | | HIPAA | BAA required, access logs, encryption, automatic logout | Axway signs BAAs. Supports AES-256 at rest, TLS 1.3 in transit, and detailed access audit trails. | | PCI DSS | Protect cardholder data, track access | SecureTransport supports PGP encryption for files with PAN data; logging includes who accessed what file when. | | SOX | Change controls, audit trails, separation of duties | Role-based access control (RBAC) in both products; immutable audit logs for file events. | | FedRAMP / IL (Gov) | Controlled unclassified information (CUI) protection | Axway has FedRAMP Moderate authorization for certain deployments; supports FIPS 140-2 validated cryptography. | supports FIPS 140-2 validated cryptography. |