Secure Email, Web and Form Solutions         +1 (800) 441-6612
LuxSciLuxSci
Secure Email,
Web and Form Solutions
Phone: 800-441-6612
sales@luxsci.com
support@luxsci.com

LuxSci takes email privacy seriously … Google owns your Gmail data forever

Published: April 16th, 2014

In recent news, Google is warning consumers that Gmail and google apps are actively scanning your email.

What does this mean?  Google on Tuesday edited its privacy policy to say:

Our automated systems analyze your content (including emails) to provide you personally relevant product features, such as customized search results, tailored advertising, and spam and malware detection. This analysis occurs as the content is sent, received, and when it is stored.

When you upload, submit, store, send or receive content to or through our Services, you give Google (and those we work with) a worldwide license to use, host, store, reproduce, modify, create derivative works (such as those resulting from translations, adaptations or other changes we make so that your content works better with our Services), communicate, publish, publicly perform, publicly display and distribute such content.

Read the rest of this post »

Share Post: More...

HIPAA and Heartbleed … Are you automatically in breach?

Published: April 15th, 2014

Under the HIPAA Privacy Rule, a breach is defined as:

Breach means the acquisition, access, use, or disclosure of protected health information in a manner not permitted under subpart E of this part which compromises the security or privacy of the protected health information.

Based on this definition, merely having been vulnerable to a security exploit (e.g. Heartbleed) does not constitute a beach and does not trigger breach notification law.

So — just because you used a system that was vulnerable to Heartbleed, does not mean that a breach occurred or that any type of reporting is needed.  Imagine if it did … practically everyone would have to report and that would overwhelm Health and Human Services!

Read the rest of this post »

Share Post: More...

Best Practices in Growing your Email Subscriber Base

Published: April 14th, 2014

How can I legitimately maximize my email mailing list size?  Maybe I should just buy a subscriber list, that seems easy and quick!

Growing an email subscriber list is major concern for anyone doing email marketing, especially those just getting into it for the first time.  Most succumb to the slick sales pitches of those selling mailing lists … list of thousands to millions of subscribers.  Here we will provide you with some guidance on how to grow your list properly and enhance your email marketing campaigns.

What is wrong with my purchased list?

Where do you think the “subscribers” to these lists came from?

Read the rest of this post »

Share Post: More...

HeartBleed Attack on OpenSSL and LuxSci: What you should know.

Published: April 8th, 2014

If you don’t know yet, an incredibly serious security issue in software used by roughly 66% of all web sites on the Internet was discovered over the last few days.  This issue, which has been in existence since 2011, is one of the most serious issues facing the Internet in a long time.  Companies all over the world are scrambling to update their systems to protect themselves against Heartbleed attacks.

You can read about this issue here: The Heartbleed Bug

The take away is that this is not a weakness with SSL or TLS; but a bug in certain versions of the “openssl” open source SSL library used by very many sites.  If exploited, the attacker can get your secure web sites SSL private keys … thus allowing them to spoof your site and perform “man in the middle” attacks without any SSL errors or warnings.  This is really not good.

The homework for end users is to change passwords and to replace SSL certificates that they may have purchased themselves for secure email or web services.

Heartbleed and LuxSci

LuxSci’s servers have been fully updated so that they are no longer vulnerable to the Heartbleed attack.  We have also re-issued and re-installed our luxsci.com-related certificates and revoked the old ones.

Read the rest of this post »

Share Post: More...

Gmail is Always Playing Catch Up

Published: April 7th, 2014

In case you missed it, Gmail’s “big announcement” last week was that it would:

  1. Only allow secure (over https / SSL) web connections from users to its servers, and
  2. Make sure that all email traveling between its servers over the Internet uses SSL so it can’t be eaves dropped upon.

This is generally a very good thing.   Its always nice when companies catch up to normal standard procedures by improving their policies.  This makes the Internet an incrementally more secure and safe place.

Just be careful not to give them too much credit as this is really a case of playing “catch up” and not doing anything new or special.  

Read the rest of this post »

Share Post: More...

New! Personalize Email Composition Fonts & Colors Default Settings

Published: April 2nd, 2014

Email Composition SettingsBecause each customer’s individual styles are different, Luxsci’s newest email feature enables you to define your style for email composition in WebMail.  You may now create a personalized default style configuration for your email editor.   If you prefer your text to display as black or blue or any color in the rainbow, you can select that as your preferred font color.  When you send email with HTML, these style settings will be used to display your email to the reader.  The reader must also be using an email application which enables email with HTML in order to appreciate your applied styles.

Read the rest of this post »

Share Post: More...

Free Web Form Building and Secure Hosting

Published: March 28th, 2014

Form BuilderLuxSci SecureForm now includes “Form Builder,” a visual web form builder with fast, redundant, secure hosting.

  • Don’t have the tools to create your own web forms?
  • Don’t have a secure place to host your web forms?
  • Want form field validation and/or Ink Signatures, but don’t have the time or expertise to set that up yourself?
  • Do your forms need to be HIPAA compliant and/or secure?

LuxSci SecureForm Builder may perfect for you.

Read the rest of this post »

Share Post: More...

Do HIPAA Resellers Need Business Associate Agreements with their Clients?

Published: March 27th, 2014

HIPAAThe short answer is “Yes“.

The HIPAA Omnibus (and HITECH) rules states that a chain of Business Associate Agreements is required from the Covered Entity though each business partner in the chain of companies that have potential access to the ePHI of that covered entity.

In the case of LuxSci HIPAA resellers, the chain of companies is:

  1. LuxSci
  2. LuxSci Reseller
  3. Resellers’ Customers (be they Covered Entities or Business Associates)

So, LuxSci would have a business associate agreement with the Reseller and the Reseller would have separate business associate agreements with each of his/her customers.  This is because the LuxSci HIPAA reseller is acting as a VAR (value added reseller) of LuxSci, administering his customers accounts.  As such, the HIPAA Reseller provides basic support to his customers, can do password resets, can technically access their ePHI via password reset and support processes, etc.

Read the rest of this post »

Share Post: More...

SecureForm: Give your customers access to their form submissions

Published: March 19th, 2014

Many times when a customer fills out a form on your website, they want a copy for their own records. Providing this copy of the submitted data often takes manual effort on your behalf to search your Inbox, WebAides Documents, or database, extract the appropriate file, and email the file as an attachment back to the individual who filled it out.

Of course, this presumes that the submittee entered their email address accurately, and that you send the form back to their correct address. When sending a copy via this method, sensitive information such as medical data that needs to be HIPAA compliant could possibly be sent to the wrong person or insecurely, resulting in a possible breach and violation!

With LuxSci SecureForm it is easy to securely provide the person submitting the form a copy, automatically and immediately after they submit your form.

Read the rest of this post »

Share Post: More...

HIPAA Resellers Make LuxSci Services Their Own

Published: March 17th, 2014

HIPAASmall web or IT shops specializing in services for the medical segment often subscribe to LuxSci to provide HIPAA-complaint email and/or web services to their customers.  We take care of providing the services, support, and compliance.  They take care of getting the customers setup, providing direct support, integrating with customers’ other services, etc.  These businesses effectively resell LuxSci security services, charging their customers for our services plus the value add that they provide.

Aggressive resellers like to present LuxSci’s email and web security services as their own product offering, to a large extent.  This is easily accomplished with LuxSci’s Private Labeling service.

Read the rest of this post »

Share Post: More...
Security Certifications TRUSTe EU Safe Harbor Thawte Extended Validation SSL Certificate McAfee Secure Authorize.net Merchant