Data security is evolving rapidly. AI adoption, insider threats, data sprawl, and the rise of the agentic workspace—where both humans and AI interact with sensitive information—are converging to create new risks. Proofpoint Data Security empowers organisations to discover, classify, and safeguard their most critical data. It provides a unified solution that mitigates risks from user behavior, excessive access, misconfigurations, and system vulnerabilities. By combining content awareness with contextual insights, it delivers clear visibility of data risks. This helps organisations build stronger data security strategies.
This blog describes the latest innovations for Proofpoint Data Security. These new product and service capabilities help organisations address key use cases, speed up investigations, and streamline security operations.
1: Enhance visibility and operational efficiency with unified DLP
Email DLP integrates with Data Security to provide unified data loss prevention (DLP) across all channels. Now you can configure, detect, and remediate email DLP from the Data Security Workbench. Common detectors and data classes—as well as consistent DLP across email, cloud, and endpoint—streamline management and boost operational efficiency. Administrative effort is reduced as the integration eases access to new features and updates.
2: Protect against data loss and data exposure
Gain greater accuracy with advanced smart identifiers
Administrators can now easily create, validate, and tune custom Smart IDs to protect data unique to your organisation. Examples include source code, CAD drawings, trading logarithms, and product roadmaps. Smart IDs capture complex, unstructured data patterns, reducing false positives and negatives. With data volumes surging, this helps ensure protection of your most important data.
Improve detection of sensitive data at the endpoint
Exact Data Matching (EDM) at the endpoint helps improve the detection of sensitive data by scanning structured data, such as data tables and records. EDM is based on fingerprinting of datasets configured by your organisation. With greater accuracy and efficiency, EDM helps easily detect and prevent exfiltration of sensitive data in tables or database records.
Gain visibility into corporate and personal use
You can now identify if a user is using a corporate or personal account (usually email) as identification during browsing, uploading, or downloading activities on various websites. This level of granularity helps to prevent the loss of sensitive data via specific websites. The supported websites are ChatGPT, Google Drive, SharePoint, and Box.
There are three use cases:
- Submit any content to a corporate site
- Prevent confidential information from being submitted to a personal account
- Allow users to submit non-sensitive content to a personal account
Broader coverage across more endpoints
Support for endpoint agents on Windows devices powered by Advanced RISC Machine (ARM) processors is now available. This enhancement means you get the benefits of our lightweight agent together with ARM’s efficiency—protecting more devices without slowing them down.
Our endpoint protection is built on three core principles:
- Stability. Runs independently from the operating system to avoid disruptions.
- Performance. Uses device resources only when needed, keeping things fast.
- User experience. Non-intrusive operations ensure end-user productivity.
Align policy enforcement for data in motion and at rest
Cloud DLP integration with Data Security Posture Management (DSPM) unifies data-at-rest and data-in-use protection across SaaS apps. This enables shared data classes, linked risk signatures, unified DLP policies, and coordinated scanning between DSPM and Cloud DLP.
This innovation delivers consistent, efficient, and scalable SaaS data protection by reducing duplicate configurations. It ensures aligned policy enforcement and prevents API overuse—while maintaining full visibility for administrators.
Automatically map and apply Snowflake tags
The integration between Snowflake and DSPM allows DSPM to sync, map, and automatically apply tags to columns and tables directly within Snowflake, linking DSPM data discovery with Snowflake’s native tagging framework.
This innovation eliminates manual, inconsistent tagging by automating metadata alignment. The result is enhanced data governance, compliance, and tag-driven policy enforcement—such as role-based access, encryption, and data masking—across Snowflake environments.
3: Improved user experience
Adaptive Email DLP is now integrated with Microsoft Smart Alerts technology. This integration enhances and streamlines the end-user experience by providing:
- Fail open when offline
- New side pane UX for improved experience
- Faster, more consistent checks
- Enhanced support from Microsoft
4: Optimize your investments with specialised expertise
Advisory services bundles for Data Security now provide convenient access to strategic guidance at the service level that best meets your needs. These curated advisory services include three tiers: basic, standard, and premium.
Applied services are now available for Data Security Core. This means you can optimize your DLP investments with the help of Proofpoint data security experts via standalone services or through the DLP Transform and Data Security Core bundles.
Stay in the know
Learn more about Proofpoint Data Security. For the latest updates and new developments, join our quarterly webinar series: Proofpoint Innovations: Defend Data.
