Best Practices for Data Protection

Defensive Controls Against Insider & Outsider Threats

  • Where’s your source code?
  • Whose laptop/workstation has it?
  • Has your Intellectual Property been sent to Box?
  • Has a salesperson copied your customer data to their Gmail account?
  • Has an employee sent ePHI or PCI data to a 3rd party?
  • Has a Business Associate sent information to his private email account?
  • Data traveling across borders?  Do you know? Can you prevent it, based on policy?
  • Has malware encrypted your sensitive data and sent it out through an unknown channel?
  • Can you inventory your data storage silos?
  • Do you understand how much sensitive data sprawl is within your organization?
  • Do you know what sensitive data is hidden in imaged documents?
  • Are you GDPR compliant?
Here are a few best practices for simple defensive controls against insider and outsider threats


  1. Continuous, accurate Discovery and identification of Sensitive Data
  2. Continuous Classification of Sensitive Data
  3. Continuous Monitoring of all channels/ports & endpoints with the ability to accurately prevent the exfiltration of sensitive data
  4. Encrypt data based on policy – blanket encryption protects the hacker
  5. Continuous employee and 3rd party training including business associates

Some data needs to be blocked, some just encrypted while other information can leave without any issue.   Does your data protection program have the ability to accomplish this?

With broad coverage for both on premises and the cloud, GTB Technologies Enterprise Data Protection that Works platform incorporates all these best practices for complete insider threat protection.  Try it out


Want to see something cool?

Want Easy Access to
Data Security that Works?

Secure your Sensitive Data, including from  Remote Users

Try it for Free