Who is eligible to use Box?
All UCSF students, staff and faculty members with MyAccess are eligible to use the Box service.
How much storage am I entitled to?
All users get 60GB of storage.
What is the file size limit when uploading?
There is a 5GB file size limit for UCSF Box accounts.
Can I use Box to share files and folders with a group?
Yes. You can share files with any individual with an email address, whether they have a UCSF Box account or a free Box account. For detailed instructions on sharing your files and folders, visit the Box website.
Can I use Box on my mobile device?
Yes, Box is available on many mobile platform. For detailed information and apps downloads, see Box's Mobile Apps here. For more information on UCSF minimum security standards as cited in the UCSF Information Security and Confidentiality Policy 650-16, click here.
How do I install Box Sync? Where can I get more information on Box Sync?
Box Sync installation documentation.
Box Sync FAQ documentation.
Box Sync allows you to sync any folder in your “All Files” section, that you are an editor, co-owner, or owner. Note: Sub folders, and folders that you have viewer, previewer, uploader, or preview uploader access to, are not available to sync.
How can I control the email notifications that I receive from Box?
Email notification settings can be set by navigating to the Account Settings > Notifications tab when you log into Box on the web. Below are email notification settings that you can modify:
Where can I go for more support?
There is a wealth of information on how to use Box at success.box.com and on Box’s support site. Support is also available through the ITFS Service Desk.
What are the benefits of Box over other popular commercial services, like Dropbox?
DropBox and Box share some of the same functionality. However, Box is designed for enterprise-level solutions for large organizations while Dropbox is geared toward consumer use. Box offers features like content and task management, online workspace for collaboration, user and group permissions, admin account transfers, and a built-in editor. High level features, custom options for embedding files into a website, Google Apps integration, and administrative controls allow Box users to create and manage a complete work space environment. Internet2, of which UCSF is a member of, has signed a Master Services Agreement (MSA) with Box that provides various terms and conditions specific to the higher education community. In addition, Internet2 has worked with Box to co-develop a customized service offering that integrates with the Internet2 Network and with InCommon to better meet the needs of the Internet2 community. The production service is brokered by Internet2 and provided by Box. Another key benefit of Box is its ability to integrate with UCSF MyAccess Single Sign On service.
How can I transfer my files from Dropbox to Box.com?
After installing Box Sync on your workstation, you can move files and folder from the Dropbox folder by dragging them to the “My Box Files” folder. This will initiate an automatic sync and the files will be copied up to the cloud. For more information, click here.
If a user leaves UCSF, is it possible to transfer their data to another account within Box (assuming we have a signed "consent to access" or "access without consent" form)?
Yes, please submit a ticket.
How does Box protect my data?
Box protects data using both access controls and encryption. Access to your UCSF Box account is controlled using your MyAccess userID and password. Access to the files you store on Box is controlled by the permissions you set. By default, access is private to the account holder. All communication with Box from your computer or mobile device is encrypted using SSL and data is encrypted in storage using 256-bit AES encryption. Other security features include file-level password protection and access notification. Additional information can be found by reading Box’s security whitepaper.
Box adheres to the highest industry standards for security at every level and commits extensive resources to the design, implementation, monitoring, and maintenance of its security infrastructure, including:
• Data encryption
• Administrative auditing
• Password policy enforcement and AD/LDAP integration
• Role-based access controls
• Password- and time-based file sharing
Can I use Box with sensitive data that is covered by laws such as HIPAA and ePHI?
Box should NOT be used to collect, process, store or share ePHI, FERPA, PII or sensitive restricted data until further notice. See below for UCSF BOX Data Classification and Usage Guidance below:
| Type of Data | Examples |
Public: Information that is widely available to the public through the web, publications, pamphlets, and other distribution methods | Brochures, news releases, pamphlets, web sites, marketing materials |
Internal: Routine operational information requiring no special measures to protect from unauthorized access, modifications, or disclosure, but not widely available to the public. | Routine correspondence, employee newsletters, internal phone directories, inter-office memoranda, internal policies & procedures |
Protected: Data that would notnecessarily be deemed to be public record even though release may not be prohibited by federal or state law, but the data owner has determined security measures are needed to protect from unauthorized access, modifications, or disclosure | Intellectual property licensed and/or under development, contract research protocols, records, department financial data, records wherein the public interest served by not disclosing the record clearly outweighs the public interest served by disclosure of the record, system configurations, system logs, risk reports |
Confidential: Information requiring the highest levels of protection because the data is protected by law and disclosure of such data will result in significant adverse impact to the institution and affected individuals(financial loss, sanctions, penalties, etc.). | Protected Health Information (PHI), Student Identifiable Information (SII), personally identifiable information (PII), personnel information, Social Security Numbers; intellectual property licensed and/or under development |
Further detail about data classification, handling and security can be found in the appropriate UCOP and UCSF Policies:
| |