Security & compliance

Protect and govern the flow of information

Sécurité et conformité

Leading organizations secure their data with Box

Morgan StanleyMorgan Stanley
AllerganAllergan
Dubai AirportsDubai Airports
IntuitIntuit
IRCIRC
security

Frictionless security built for you

Protect your content with built-in controls, from granular permissions to strong user authentication. Every file is encrypted using AES 256-bit encryption in diverse locations.

 

Governance

Simplified governance and compliance

Simplified governance and compliance helps you avoid fines and meet the most demanding global compliance and privacy requirements.

Controls

Full visibility and control

Monitor how work happens inside and outside your company, with insights and complete audit trails. And use Box's machine learning to defend against threats.


Powerful security, faster business

Prevent data leaks with frictionless controls — from 2FA to watermarking. Manage your own encryption keys using Box KeySafe, and further reduce risk with Box Shield's classification-based policies and intelligent threat detection.

Governance made easy

Simplify how you manage the content lifecycle with information governance that actually works. Easily set policies that retain, dispose of, and preserve your content.

All the compliance you need

Whether you need to meet specific industry regulations such as FINRA and GxP, data residency requirements, or international privacy standards like GDPR, Box has all of your compliance bases covered.

Seamless integrations for better security

The Box Trust ecosystem provides seamless integrations with best-in-class security and information governance partners. Our partnerships enhance content security and compliance across your entire tech stack.

Dubai

"We chose Box primarily for security and regulatory purposes. Not only do we have greater control of our content with Box, it has simplified access to information resulting in a significant reduction in associated time and costs."

 

Abdulrahman Al Hosani, VP, BT Infrastructure and Operations, Dubai Airports

 

Key features

Granular user permissions, with 7 user-friendly sharing roles

Organization-wide controls on sharing and collaboration such as shared link expiration

Robust device controls, natively in Box and with EMM partners such as Intune and Airwatch

User-friendly information rights management for secure external sharing, including dynamic watermarking

Precise security policies with classification-based access controls

In-depth audit logs, easy end user and admin reporting, and integration with popular SIEM tools

Native information governance and eDiscovery capabilities

FIPS 140-2 certified, AES 256-bit encryption at rest and in transit, with the option of customer-managed encryption keys

SSO support with all major providers, native password controls, and two-factor authentication for internal and external users