Bitglass’ integrated, high-performance DLP engine gives you the flexibility to build policies from scratch, pull from the extensive Bitglass catalog, import policies from premises-based DLP solutions, or integrate via ICAP. The Citadel DLP engine is paired with a wide range of remediation actions, built to allow you to safely extend access to sensitive data, even in risky contexts. Actions include dynamic application of encryption or rights management (DRM), redaction of sensitive content, watermarking and tracking, quarantine, share removal, and blocking.
Contextual access control ensures that appropriate access to Salesforce is provisioned based on the context by which the user is accessing the application. Policies can be defined based on access method (browser or native app), device (managed vs unmanaged), location (by country or IP address range), group, and more. Administrators can choose to block, allow, or provide intermediate levels of access to Office by pairing access control policies with DLP policies.
Harbor Cloud Encryption is the only offering on the market that leverages full-strength, 256-bit FIPS-compliant encryption with 256-bit initialization vectors, supporting both field-level encryption, for apps like Salesforce and file-level encryption, for any cloud application, including Salesforce. The unique, patented technology preserves application functionality such as search and sort, simultaneously providing data protection and an unchanged user experience. The system integrates with a wide variety of key management systems via KMIP, in addition to the native key management option which is based on Amazon’s CloudHSM.