PR.DS-05

Has your organization implemented controls to prevent and detect data leaks across systems, networks, and endpoints?

Explanation

Data leak prevention (DLP) controls are essential for protecting sensitive information from unauthorized access or exfiltration. These controls typically include monitoring data in motion (network traffic), data at rest (stored data), and data in use (endpoint activities), with capabilities to block suspicious transfers or alert security teams. Evidence could include documentation of implemented DLP solutions, screenshots of DLP policy configurations, data classification schemes, logs showing blocked data exfiltration attempts, or reports from DLP monitoring systems that demonstrate active protection against data leaks.

Context

Function: PR: PROTECT
Category: PR.DS: Data Security
Sub-Category: Protections against data leaks are implemented

ResponseHub is the product I wish I had when I was a CTO

Previously I was co-founder and CTO of Progression, a VC backed HR-tech startup used by some of the biggest names in tech.

As our sales grew, security questionnaires quickly became one of my biggest pain-points. They were confusing, hard to delegate and arrived like London busses - 3 at a time!

I'm building ResponseHub so that other teams don't have to go through this. Leave the security questionnaires to us so you can get back to closing deals, shipping product and building your team.

Neil Cameron

Founder, ResponseHub