What is Virtru?
Virtru is an end-to-end encryption tool that allows users to encrypt communications and files sent via email. If a user sends an email encrypted with Virtru, the recipient must unencrypt the message with Virtru:
Virtru also provides additional security features, such as disabling forwarding, watermarking documents, setting an expiration date for the message and providing additional controls once an attachment has been downloaded.
Virtru Policy
LBNL only allows for Virtru use for the already approved use cases defined below. The vast majority of users at the Lab do not handle information in need of additional protection and typically do not need to use Virtru email encryption. If you believe you are handling information Controlled Information that should be protected with email encryption, please email [email protected] with a use case and business justification for using Virtru.
Approved Virtru use cases at LBNL
- Health Services - To protect medical information that must be shared via email as part of regular Health Services processes. This information is regulated under the California Confidentiality of Medical Information Act (CMIA).
- Occupational Safety - Occupational Safety receives Virtru messages from Health Services that are necessary as part of OSHA workplace injury reporting requirements.
When to use Virtru
For individuals with Virtru access, Virtru email encryption should be used to protect medical information regulated under CMIA. Examples of when to use Virtru email encryption include:
- Protected Health Information (PHI)
- Personally identifiable information (PII), such as name, birth date, address, Social Security Number, telephone number, email
In general, if you have Virtru access and are considering encrypting an email with Virtru, Lab IT recommends defaulting to email encryption.