Home / Use cases / Clipboard DLP

Clipboard DLP

Preventing leakage of sensitive information is a major challenge for most enterprises. Traditional Network DLP solutions no longer provide sufficient protection, as they are often limited to monitoring and controlling data at the network level, and lack visibility into overall user activity and context within the browser. Attackers can easily build applications to evade such solutions.SquareX’s Clipboard DLP addresses this gap by offering advanced in-browser data loss prevention. It monitors clipboard activities in real-time, ensuring that information copied/pasted is in compliance with enterprise defined policies.

Block clipboard copy into ChatGPT

AI applications such as ChatGPT can be of great help at work; however, employees have to be careful while using the content from AI applications as it may contain inaccuracies or be incomplete. It is crucial to verify the information and ensure that it aligns with the organisation's policies and standards as it can pose security risks and potential breaches of confidentiality. Employees should also be aware of licensing and intellectual property issues, as the AI generated content may have specific usage restrictions. Ensuring proper attribution and compliance with licensing terms is essential to avoid legal complications. Instead of blocking AI applications completely, enterprises can apply granular policies. Using the policy generating copilot, admins can prompt ‘Block clipboard copy into ChatGPT’ to generate the appropriate policy. The expected outcome would be:

Block clipboard paste from ChatGPT

While using AI applications such as ChatGPT, employees must exercise caution when sharing information, as it could be company confidential and may be used by the AI for its own training purposes. To mitigate such risk, enterprises can apply policies to block paste operation on AI applications. Using the policy generating copilot, admins can prompt ‘Block Clipboard Paste from ChatGPT’ to generate the appropriate policy. The expected outcome would be:

Block clipboard paste if text contains SSN information

Social Security Numbers are considered confidential data in the United States, where attackers can steal user identity for malicious purposes. With SquareX, admins can easily create policies to block clipboard paste action if such information is found in the clipboard content. This use case can be extrapolated for any other Personally Identifiable Information (PII) such as passport numbers, address, etc.

Block clipboard paste to personal Gmail

It is essential to restrict employees from pasting sensitive content into their personal emails, chat platforms, social media, and so on. This video demonstrates one such case, where admins can restrict clipboard paste on personal Gmail and allow the same action on their corporate email.

Block clipboard paste if content is from a restricted website

Some restricted content originating from internal web applications, documentations and other critical resources should not be leaked to other platforms. One way to prevent this is to block clipboard paste if the content is copied from these restricted sites.

Block clipboard paste if content was copied from outside the browser

Many organisations rely on endpoint DLP solutions. However, these solutions are not context aware to the nuances of the browser. With SquareX, it is possible to restrict clipboard paste to certain websites if the content was copied from local applications or documents.