Criminal Justice Information Services (CJIS) analyzes criminal justice information (CJI) from law enforcement centers around the country and provides a centralized database to store and access CJI. To use CJIS databases, organizations must comply with government regulations:
The cloud enables on-demand access to CJI for state and local governments and agencies that maintain public safety. To protect criminal history record information (CHRI) and other CJI, organizations must comply with strict government regulations to mitigate CJIS compliance risks. When CJI is transmitted or at rest (i.e. stored digitally) outside the boundary of the physically secure location, the data needs immediate protection via encryption that is FIPS 140-2 certified.
Support your need to collaborate internally and with external agencies, and unlock digital workflows to support remote government workers and distributed agency teams. Virtru’s data-centric, end-to-end encryption and granular access controls help you:
“By enabling full compliance for our law enforcement agency, Virtru gave us a path toward a complete cloud migration.”
– Susan Lyon, Google Cloud Team Manager, State of Maryland
End-to-end encryption prevents unauthorized access to email and files containing CJI and maintains the privacy of citizens’ PII, supporting CJIS compliance.
Persistent protection to govern access throughout the data lifecycle, with the option to host your own encryption keys.
Boost user adoption and deliver simple recipient access that naturally fit into workflows between users, admins, and agency partners.
Virtru hosts everything in the U.S., uses encryption algorithms that comply with FIPS 140-2, is FedRAMP authorized at the moderate impact level, and adheres to the security controls defined by NIST SP 800-53. Virtru cannot access your protected data at any time.
Without end-to-end encryption, use of cloud services requires CJIS-specific background screening and training for cloud vendor personnel and specialized SLAs and/or contractual clauses that compound costs and delay deployments.
Virtru’s end-to-end encryption streamlines CJIS compliance in the cloud by preventing vendor personnel from accessing CJI. Transparent key exchanges avoid complexities of other end-to-end encryption approaches like PGP and S/MIME for enhanced adoption and usage
Provide law enforcement agency employees and administrators easy-to-use data protection, embedded in existing applications. Complement user protections with DLP rules that automatically enforce encryption and control.
Enable seamless access for recipients and collaborators at external agencies and departments, without requiring new accounts, passwords, or software, for digital sharing workflows that support rapid delivery of services that support public safety.
Enable secure data sharing, aligned with CJIS compliance, across agencies with attribute-based access controls (ABAC) for CJI that enable instant access revocation, expiration, disable forwarding, and document watermarking capabilities.
Audit who has accessed CJI, when, where, and for how long. Export event logs for analysis, or integrate with your SIEM for advanced threat analysis.
Maintain ultimate control of the encryption keys protecting all sensitive CJI stored and shared in the cloud with the Virtru Customer Key Server.
Get expert insights on how to address your data protection challenges.