Shared Responsibility Model
Files.com operates a Shared Responsibility Model for platform security and compliance. The model defines which controls and obligations Files.com handles, and which remain with you.
This division protects the Confidentiality, Integrity, and Availability (CIA) of your data. Files.com provides the secure infrastructure, tooling, and platform features. You configure and use those tools to meet your specific compliance and security goals.
Files.com Responsibilities
Files.com secures and operates the platform infrastructure, including:
- Physical security of data centers and hardware
- Software, networking, and compute layers
- Platform availability, uptime, and performance
- Internal security controls and continuous monitoring
- Delivery of tools for secure access, storage, sharing, and audit logging
- Reliability and functionality of the security features we provide
Customer Responsibilities
You are responsible for how Files.com is configured and used, including (but not limited to):
- File and folder permissions
- User provisioning, deprovisioning, and training
- SSO / LDAP configuration and settings
- Storage location selection
- Public sharing, expiration, and deletion settings
- IP whitelisting and country-based access restrictions
- Encryption options (e.g., PGP/GPG on supported plans)
- Virus scanning, content classification, and DLP controls
- Governance and compliance configuration
- Automation and integration with remote systems
- Session timeout, SSL configuration, and security policies
Files.com gives you a high level of control over these settings. Configure your site to match your internal security, legal, and compliance requirements.
Built-In Security Controls Available to You
Files.com provides the following controls to help meet your security goals.
Authentication and Access
- Multiple Two-Factor Authentication (2FA) options
- 2FA enforcement and password policy controls
- SSO/LDAP integrations (multiple per site)
- Session IP pinning and session expiration
Network and Environment
- IP allowlisting and geo-restrictions
- Custom SSL certificates
- Public sharing controls (Share Links, Public Hosting, Inboxes)
Storage and Encryption
- Regional storage selection (account or folder-level)
- PGP/GPG encryption (on supported plans)
- Deleted file retention and expiration policies
Audit and Visibility
- Full user and file history with API export
- File hash values via API
- Access logs and configuration exports
Get The File Orchestration Platform Today
4,000+ organizations trust Files.com for mission-critical file operations. Start your free trial now and build your first flow in 60 seconds.
No credit card required • 7-day free trial • Setup in minutes