Data Loss Prevention (Proactive DLP)

Detect and Block Sensitive Data in Files and Emails

Data Loss Prevention (DLP) can help prevent potential data breaches and regulatory compliance violations by detecting and blocking sensitive and confidential data in files and emails, including credit card numbers and social security numbers. OPSWAT Proactive DLP supports a wide range of file types, including Microsoft Office and PDF.

Manage Compliance with OPSWAT Data Loss Prevention

To comply with industry regulations, such as Payment Card Industry Data Security Standard (PCI), Health Information Portability and Accountability Act (HIPAA), Gramm-Leach-Bliley Act (GLBA), General Data Protection Regulation (GDPR) and Financial Industry Regulatory Authority (FINRA), organizations have the obligation to keep personally identifiable information (PII) private.

Also, in today's increasingly litigious and highly competitive business environment, the privacy of confidential business information is an essential lifeline for every enterprise. Confidential information, such as trade secrets, intellectual assets, financial statements, can be disclosed or sent to unauthorized individuals via a multitude of channels, including email, the internet, portable storage devices, and cloud services. Data breaches can be costly, damage a company’s brand and reputation, and diminish the trust of customers and partners.

OPSWAT Proactive DLP can help organizations prevent sensitive and regulated data from leaving or entering the organization’s systems by content-checking files and emails before they are transferred. MetaDefender can search over 70 file types for sensitive content, including Microsoft Office, PDF, CSV, HTML and image files.

of companies found over 1,000 sensitive files exposed to all employees
is the average cost of a data breach
of data breaches are caused by human error

Types of Sensitive Data OPSWAT Proactive DLP Detects

MetaDefender detects the following sensitive and secret data in files:

  • Social Security Numbers
  • Credit Card Numbers
  • IPv4 addresses
  • Classless Inter-Domain Routing (CIDR)
  • Custom Regular Expressions (RegEx)
  • Secrets in text files (AWS, Microsoft Azure, and Google Cloud Platform)

Benefits of Data Loss Prevention (DLP)

✓ Prevent sensitive and confidential data from entering or leaving an organization without hindering the productivity of users
✓ Aid compliance with data regulations and industry-standard security requirements such as PCI, HIPAA, Gramm-Leach-Bliley, FINRA and more
✓ Establish custom policies to meet your specific policy requirements
✓ Integrate Proactive DLP with Multiscanning, Deep Content Disarm and Reconstruction and File-based Vulnerability Assessment for comprehensive protection

How Data Loss Prevention (DLP) works

  • Proactively detect and block sensitive data in files and emails in 70+ supported file types
  • Automatically redact identified sensitive information in PDFs, MS Word documents and MS Excel spreadsheets
  • Leverage Optical Character Recognition (OCR) technology to detect and redact sensitive information in image-only PDF files or PDF files having embedded images
  • Remove metadata containing potentially confidential information like name, company, subject, GPS locations, authors, etc.
  • Watermark files for better security accountability and traceability

OPSWAT Proactive DLP Use Cases

Content-check file uploads and downloads

With MetaDefender Core and MetaDefender ICAP Server, you can content-check files for sensitive data when they are uploaded or downloaded from web applications, as well as check files that are being transferred through web proxies, secure gateways, web application firewalls, and storage systems.

Check Emails for Sensitive Information

To aid compliance with PCI and other regulations, as well as protect your customers, MetaDefender Email Gateway Security can prevent emails with sensitive content from leaving or entering the organization by content-checking the email body and attachments. MetaDefender Email Gateway Security can identify credit card numbers or social security numbers, as well as alert administrators when emails include content that matches custom regular expressions.

Content-check Files Transferred through Air-Gapped Networks

With MetaDefender Kiosk, you can content-check files when they are being transferred to and from your critical air-gapped networks and block PII or top-secret content by using custom regular expressions.

Identify New Custom Sensitive Information in Existing Content

All files stored within MetaDefender Vault are continuously checked for sensitive information. Therefore, if you set new custom sensitive information types based on regular expressions, matched information will be automatically detected and redacted once the files are re-scanned. Scans can take place periodically or by request.

OPSWAT Products That Offer Proactive Data Loss Prevention