The reason that It popped into my head is that I'm working with running
background checks for people that work with the kids at our church. I
have physical copies of the forms people filled out with all kinds of
personal information, so I was like, I'll just scan them and email them
into the church office for processing. Then I decided that sending info
like that via email probably wasn't a good idea, so I should fax them.
Then I realized that it's basically the same thing since all my faxing
is through email.
So that got me thinking, how would I know if my personal information is
just being sent out via a plain email on the receiving side? If
something were to happen, do we have have any liability for not making
it 'secure' or do we need to be telling customers up front that the
security is only as good as email, and have them sign a wavier that we
don't get sued if their email is hacked and peoples identities are stolen?
On 10/6/2014 9:33 AM, Ken Hohhof via Af wrote:
I use Ring Central for eFAX, and you can send from an application on
your computer and read messages via a password protected HTTPS site.
So you don't have to use email. You could, for example, have an email
alert you to a FAX but not attach a PDF. I just have it email the PDF
though. Who cares if someone sees the junk FAX messages I get for
cruises and roofing. I don't think I've received a real FAX in 3
years. Maybe 2-3 times a year someone wants me to send them a FAX,
but at their end I assume it is going to an actual FAX machine.
Unless it is going to the shared multifunction copier and everyone
sees it or picks it up by mistake. I think the illusion that FAX is
secure is just that, an illusion.
There also appear to be secure eFAX solutions that are probably more
secure than traditional FAX machines:
http://enterprise.efax.com/online-fax-services/secure-fax
-----Original Message----- From: Nate Burke via Af
Sent: Monday, October 06, 2014 9:11 AM
To: Animal Farm
Subject: [AFMUG] Efax and Security
So I'm asking the question before one of my customers asks it of me.
Faxing has always been a "secure" transport medium, someone could
intercept your fax only if they had a wiretap running on your phone
line. With Efax services where everything is done via Email (I use the
Voip Innovations Efax Service), are there more security concerns/risks
since everything is just emailed in the clear? We've always told
people, don't put your SS# or CC# in an email, but if they go to fax a
credit app or a payment authorization slip through the email to fax
service, isn't that the same thing? I know someone is going to bring
this up one day, and I want to make sure I have an answer ready to go
for them.
Nate
