Overview

Control and Visibility Across Your Google Apps Domain

Automate DLP with CloudLock’s Security Policy Engine

Protect your data in the cloud. CloudLock provides the visibility and control you need over your domain’s Google Drive, Docs, Sites and Google+. Use CloudLock to create enforceable acceptable use policies, search for keywords akeywords and meta data, find and fix exposure, audit sharing permissions, generate compliance reports, monitor changes in access rights, and get alerts when changes occur. CloudLock for Google Apps provides:

• Data Loss Prevention (DLP) for Google Drive, Docs, Sites, and Google+
• Audit and compliance reporting to meet data privacy regulations
• Data management – apply bulk operations to change permissions, transfer ownership, and copy docs
• End-user driven security with CloudLock Protected Folders
• Offload the entitlement review process to data owners

An Enterprise Cloud File Server Requires Enterprise-Class DLP

Google Docs and Drive are fast becoming central document and file stores for many organizations. The ease of use, large storage capacity, and access from anywhere enables organizations to replace traditional on-premise solutions in favor of a file server in the cloud.

While companies have DLP and data management tools for their on-premise data, they need the same level of protection for their data in the cloud. CloudLock provides the safeguards needed to protect against internal and external threats.

Auditing and Compliance For Google Docs, Drive, and Google Sites

Whether companies need to prove regulatory compliance (FISMA, PCI DSS, etc.) or need to follow internal data governance procedures, CloudLock is the only enterprise data protection application for Google Docs, Drive, and Google Sites. To pass internal or external audits, companies need Google Docs auditing capabilities to answer:

• Who has access to what, and what is accessible to whom?
• Which acceptable use policies are being violated by whom?
• How did access rights to sensitive data change at different points in time?

Secure Your Google Docs, Drive and Sites While Saving Time

With CloudLock, you can put Google Docs security on auto-pilot with scheduled scans, alerts, change history and a full audit trail. Use CloudLock’s end-user enablement feature to delegate sharing responsibility to data owners and get automated emails when sensitive data permissions change.

Key Benefits

Secure External Collaboration

Keep Data Safe While Sharing Externally
The CloudLock Security Policy Engine enables organizations to implement secure collaboration zones and enforce acceptable use policies in Google Docs and Google Sites to ensure compliance and data security.

Reduce Risks

Reduce Risk And Liability
Having full visibility and control into information stored in Google Docs and Google Sites helps you avoid the liability of data leakage and not meeting regulations, both having serious financial implications. CloudLock helps in meeting many of those regulations.

Operational Efficiency

Enable Distributed Administration
By enabling ‘distributed administration’, CloudLock will reduce the load on the IT staff by allowing each department / OU to be responsible for its own environment

Return On Investment (ROI)

Use Google Docs As A “Cloud File Server”
Using CloudLock, you can make Google Docs your cloud file server to reduce the foot print of on-premise file servers that are expensive to procure, manage, maintain and upgrade

Transfer Ownership and De-provision Old Accounts
By using CloudLock’s ‘Transfer Ownership’ function, you will be able to safely de-provision accounts by transferring user data. Stop paying for suspended accounts

Realize Existing  Investments
Departments that currently do not use Google Docs and Google Sites due to a lack of control and governance capabilities will now be able to do so.

Business Needs

Enable Secure Collaboration Zones

Define Secure Zones for Collaboration
With CloudLock, you can create zones internally and externally allowing only approved users to share and collaborate inside and outside the company.

Permissions Management

Centralized Management Of Permissions
Not being able to centrally manage Google Docs and Google Sites permissions exposes businesses to potential data breaches, liability of litigation with a negligence claim and employee relations issues from exposing sensitive corporate or executive information to the wrong audience. CloudLock provides visibility and control into ALL the data in the domain, including detailed ACL views and full control to change, revoke, and view docs and sites.

Compliance

Data Governance, Compliance, and Analytics
Failure to meet compliance regulations can have severe repercussions including fines by regulators, criminal liability and loss of employment. CloudLock provides the three pillars common to most regulations related to data protection and privacy: Data Governance, Data Protection, and Data Analytics. For specific mapping of CloudLock to different regulations, please go here

Records Management

Manage Records In Google Docs
Without a Records Management system in place for Google Docs results in excessive costs stemming from the manual implementation of a complex business process, and can lead to failure to meet compliance regulations and suffering the resulting penalties.

Data Discovery

Data Discovery for Google Docs
Not having a method to identify and ‘hold’ documents related to litigation is not an option for most businesses. The alternative of just producing all the data the company has stored in Google Docs, without the appropriate filters, will result in excessive processing costs as well as additional liability. CloudLock can help identify the ‘data landscape’ – all documents owned by the custodian involved in the case as well as all the docs they had access to or documents containing specific keywords.

Bulk Operations

Perform the following operations in bulk:

• Add/ remove collaborators
• Remove public exposure
• Copy files and transfer ownership

Feature List

CloudLock’s Security Policy Engine:

• Creates Secure Collaboration Zones – Allowing customers to create and define who is allowed in a zone and enforce rules for collaboration both internally and externally
• Enforces Acceptable Use Policies – Define acceptable use policies to enforce internal governance and sharing
• Puts Data Security on Autopilot – Providing ongoing monitoring and continuous scans to alert when policies have been violated

Usage, Collaboration, and Data Analytics
Get a full inventory of all users and all documents and sites in your Google Apps Domain.

Data Exposure Reports
See which documents and sites are shared with the public, outside the company, and with everyone in the domain.

Audit Documents, Sites and Users
Get a bi-directional view into permissions to see who has access to what and what is accessible to whom. Browse all documents and sites in the domain and audit end-users’ usage and access rights.

Exposure Monitoring and Alerts
Get policy-based alerts when permissions and exposure change and receive an email alert with newly exposed documents and changes in permissions.

History and change view for documents
View changes in ownership and changes for every document created or shared with your domain. Use ad-hoc reporting to see what has changed between any two dates.

Full Control of Document and Site Permissions and Access Rights
Enforce access controls by adding or removing collaborators, changing ownership, and changing collaborator access rights on any documents and sites in the domain (even if you’re not a collaborator).

Privileged View for Audit and Compliance
Enable auditors to inspect all documents and sites for compliance, with all document access logged in the audit trail.

Privileged User Auditing
A tamper-proof audit of all actions performed by privileged users through CloudLock, including:

• When an administrator views documents and sites they are not shared on
• Permissions changes
• Bulk data migrations (transfer ownership)

Role Based Access Controls
User roles for separation of duties include an ‘auditor’ role for reporting and compliance auditing and an ‘administrator’ role with full control. Delegate control of CloudLock to both user roles without making them domain admins. All changes to user roles (adding, removing, or changing a CloudLock user’s role) are logged in a tamper-proof audit trail.

CloudLock Protected Folders- Records Management
Implement records management policies for compliance, legal, and organizational needs using a secure, authenticated and tamper-proof protected folder system built on top of Google Docs.