Password-protect medical documents before you send
Healthcare work runs on documents that cannot be exposed in transit. WeTransfer lets you lock any transfer behind a password before it leaves your hands, so every recipient faces a prompt the moment they open the link and cannot reach a single file until they enter the correct password. It works on every plan, with no extra setup.
Keep your files private
Patient records, referral letters, clinical reports, and consent forms carry information that demands real access control, not just a link you hope lands in the right inbox. WeTransfer builds the password gate directly into the transfer window as you upload, and the password never travels inside the notification email, so you control the separate, deliberate channel through which you share it with the intended recipient. Once cleared, recipients can preview supported document formats directly in the browser without downloading, which is useful when a clinician or administrator needs to review a file without pulling it onto a personal or unmanaged device. You can also pair password protection with restricted access, limiting downloads to a named list of email addresses when a document is particularly sensitive. All transfers are encrypted in transit and at rest, files are stored on EU servers, and WeTransfer is ISO 27001 certified and GDPR-compliant, which matters when your documents contain personal health data.
What makes WeTransfer different
Our features are designed to minimize how much of your data we — or anyone else — can access, so you can keep what's yours, yours.
30M+ Transfers sent every month
4.8 App Store / Play Store average rating
12M+ Monthly active users
43K+ Enterprises using WeTransfer daily
Everything you need
Give people simple tools, and they'll do extraordinary things. Ultra-fast file transfers, built-in customization, easier team collaboration. That's the magic of WeTransfer.
Move your ideas forward
Share content with a unique link, give anyone a free pass to send you 200 GB files, and stay in control of transfers — even after you hit send.
Collaboration tools for teams of all sizes
With tools designed to enhance collaboration, get everyone in your team talking and moving as one, without disrupting their workflow.
Share with confidence and security
From password protection to file encryption, WeTransfer has all the built-in security features you need to safeguard your work.
FAQs
All your questions answered.
When you upload your files, fill in the Password field in the transfer options panel before clicking Transfer. The password is attached to the transfer itself, so recipients are prompted to enter it the moment they open the download link. Crucially, the password is never included in the notification email WeTransfer sends, which means you pass it to your recipient through a separate, secure channel of your choice.
Yes. On top of password protection, you can enable restricted access, which limits downloads to a specific list of email addresses. This means a recipient must both know the password and be on your approved list before they can reach the files. For healthcare documents containing personal health information, layering these two controls gives you a meaningful extra barrier against accidental or unauthorized access.
No account is needed to download or preview a transfer. The recipient simply opens the link, enters the password you have shared with them through a separate channel, and can access the files. This is useful in healthcare settings where external partners, locum staff, or referral recipients may not have WeTransfer accounts and you do not want to ask them to create one.
Yes. Go to your Transfers panel, open the relevant transfer, and you will find options to set, change, or remove the password at any time. The change takes effect immediately, so if a document's sensitivity level changes or you need to correct a password that was shared incorrectly, you can act without re-uploading the files.
WeTransfer is GDPR-compliant and based in the EU, with files stored on AWS servers in Ireland and infrastructure that is ISO 27001 certified. Files are encrypted in transit using TLS and at rest using AES-256. Data Processing Agreements are available for business plan customers, which is relevant for healthcare organisations that need documented processor agreements when transferring files containing personal health information.