FileAuditor Automates Protection for Files Exported from Business Software
05.06.2025

The DCAP system now allows applying security rules to documents according to the applications in which they were created.

Starting now, FileAuditor features a new document classification mode that categorizes files based on the application used to create them. If a document originates from a corporate system for working with sensitive data, FileAuditor will automatically recognize it as requiring protection. For example, it will identify and monitor Excel spreadsheets exported from SAP ERP, which likely contain financial information, or restrict access to PDF files saved from AutoCAD, typically containing drawings.

This functionality is enabled through labels that FileAuditor embeds into the file stream using patented technology, allowing for efficient classification based on file content or attributes such as type, name, size, and now, source application. By specifying the source application as an attribute, organizations can streamline the review process for large volumes of documents in common formats or containing sensitive information. This source-based labelling also facilitates the setup of access controls, enabling administrators to block file access for specific users or PCs across various applications, thereby enhancing security and workflow efficiency.

"The new functionality was developed based on customer feedback, as new types of confidential data frequently emerge in corporate workflow and require immediate protection. To prevent oversight, FileAuditor allows users to specify which programs and services are integral to key business processessince files containing sensitive information are typically created in these applications. The system then automatically recognizes these files and enforces access restrictions accordingly,” shared SearchInform Leading Analyst Sergio Bertoni.

“Understanding where a critical document was created is essential for monitoring its processing. Third-party editors and applications often have built-in functions for sharing or distributing documents, which can lead to uncontrolledcopies in various formats. By applying FileAuditor protection to the original source of the document, employees can continue working with the file solely within the designated parent application, significantly reducing the risk of violating corporate policies,” he explained.


ABOUT SEARCHINFORM

SearchInform is an information security and risk management product vendor as well as an MSS provider. The company's clients are more than 4000 companies in 20+ countries. Today, the team has products and services for comprehensive protection against insider threats at all levels of corporate information systems: FileAuditor (the DCAP class solution); DLP system with extended functionality; Risk Monitor (advanced platform for internal threat mitigation); SIEM system, IS outsourcing service.


Letter Subscribe to get helpful articles and white papers. We discuss industry trends and give advice on how to deal with data leaks and cyber incidents.