I've been thinking recently about ensuring the files I transfer to my clients are properly protected, particularly in light of the incoming GDPR regulations. I can achieve this relatively easily using encrypted ZIP files, with security further enhanced by texting the password and emailing the actual file (etc.)
In parrticular I have been considering the security implications for me clients transferring their information to me. Do I need to take responsibility for how securely they transfer their information? If I'm asking them to provide me with information like passport numbers, NI numbers and so on do I need to make sure they transfer this information securely to me, or do they take ownership of this?
A fair few of my clients are not massively tech savvy - part of the reason they use me. I have considered using some sort of secure file transfer system. I had a look at Accountancymanager and Senta, as they contain this feature - alongside having practice management tools. The problem is as a micro practice with only 40 odd clients they seem like a little bit of overkill for me. Looking at the workflow generated by them I think I might end up taking up much more of my time than my current digital to do list (I use Toodledo - cloud based and free for the version I use and has various recurring task options). Considering that it seems like a lot of money £20 - 40 per month (+ non-recoverable VAT) to spend for just the document transfer.
Is anybody else using any secure file transfer options to communicate with clients (in both directions)? I considered using Google Drive - but then people have to sign up for their own google account. This is partly the same with Senta and AM - but at least I can control that and issue them a login etc.