Case Study: Signify Health achieves HIPAA-compliant Slack data protection with Nightfall DLP

Signify Health Stays HIPAA Compliant with Nightfall DLP

Signify Health, a Dallas-based healthcare technology company with 1,500+ employees, had to protect sensitive patient data and meet strict HIPAA requirements after a merger and a company-wide move to Slack. Mark Magpayo, Manager of Security Operations, chose Nightfall — specifically Nightfall Enterprise DLP for Slack — to address the gap in Slack’s native security and ensure PHI stayed protected during cloud-based communications.

Nightfall was deployed to provide automated DLP alerts and in-Slack remediation, plus responsive support for escalations. The Nightfall solution allowed Signify Health to notify users, take actions, and delete or quarantine files within Slack, reducing the time, cost, and resources required to build an in-house solution while preventing data leakage and enabling HIPAA compliance as the company scales.

Signify Health

Mark Magpayo

Manager, Security Operations