Security Awareness

Sharing your files
securely

A practical guide for every AREMIS employee.
Learn the right habits to protect our data on a daily basis.

1 Where to share?

At AREMIS, only two platforms are authorised for hosting and sharing professional documents.

💬

Microsoft Teams

Use team channels to collaborate and share files with your colleagues in real time.

📁

Microsoft SharePoint

The document libraries linked to Teams are the structured and secure storage space.

⚠️

Google Drive, WeTransfer, Dropbox… may under no circumstances be used without prior approval from the CISO (security@aremis.com).

2 Client or partner platforms

A client or partner wants to use their own file sharing platform? No problem, but prior approval is mandatory before any sharing takes place.

Submit the request

Send an email to security@aremis.com describing the proposed platform.

CISO assessment

The CISO evaluates the platform's eligibility: access management, authentication, traceability, and data protection.

Formal approval

No sharing may take place until approval has been formally granted.

Sharing authorised

Once approved, the platform may be used in accordance with the defined conditions.

3 Internal sharing

Collaborating with fellow AREMIS colleagues is simple. Here are the best practices.

✅

Share via Teams

Always use team channels to share files with your colleagues.

👥

Add the right people

Only add relevant people to a Teams group when full access is justified.

📂

Structure your folders

Use a clear folder structure in SharePoint to facilitate navigation and access control.

🔑

Need-to-know principle

Share a specific file or folder with appropriate permissions rather than granting access to the entire team.

4 Sharing with external parties

Sharing with people outside AREMIS is subject to strict conditions.

🪪

GUEST account required

All external parties must first be created as a GUEST account in Entra ID via support.aremis.com.

🎯

Minimal access

Limit sharing to strictly necessary files or folders. Only share with clearly identified individuals.

🔗

No open links

Avoid "anyone with the link" sharing. Prefer named, individual sharing.

🔄

Regular review

Review access regularly and remove permissions as soon as they are no longer needed.

📋

For sensitive data (HR, financial, contractual, client data): external sharing must be justified, limited and documented.

5 Prohibited practices

These behaviours pose a risk to the security of our data. They are strictly prohibited.

✕ Sharing sensitive files via unapproved external platforms

✕ Using public links without authentication

✕ Creating multiple local copies of sensitive documents

✕ Sharing files without a clear understanding of the access granted

In doubt? Contact us before sharing.

🧭

Platform choice

Not sure if a platform is authorised or requires approval? Information Security can guide you.

🔐

Confidentiality level

Unsure about the sensitivity of a document (HR, financial, contractual, client)? Ask for advice before sharing.

🤝

Sharing with third parties

Need to send files to a client, partner or contractor? Check the conditions with IT or the CISO.

Your points of contact

The IT and Information Security teams are here to support you.

🔒 security@aremis.com 🎫 support.aremis.com

Reference documents

AREMIS – Information Security Policy – Documents Management Policy
Ways of Working Guide

Sharing your filessecurely