Few things are harder for enterprises to control than mobile devices used by employees, personal or corporate, that may contain data logs, documents, images, videos or other files the business owns.
So, cloud-based mobile device data backup provider Druva has launched Druva Proactive Compliance, a new feature for its flagship inSync product that is designed to solve data governance problems within workforces that use mobile devices.
Druva Proactive Compliance, included in the Sunnyvale, Calif.-based company's inSync Elite+ plan and made available July 21, brings deep search, auditing and automated data-scanning capabilities to users. This enables enterprises to proactively identify and act on data risks across cloud services and user devices, CEO Jaspreet Singh told eWEEK.
Druva's Market Differentiator
Druva's market differentiator is that it offers a single platform that converges data availability—backup, restore and share and now comprehensive governance (compliance, archival/search and audit)—across entire end-user information on endpoints and cloud.
"For the last two years, we've been focusing on explaining to enterprises as to why backup should be more meaningful and never become a graveyard for your data," Singh said. "You should be able to derive business value out of it."
Whereas data used to be centralized in the data center and kept compliant with data regulations and enterprise policies, the modern enterprise is now mobile-first, with more employees relying on endpoints and cloud services to get their work done, Singh said.
"The new cloud or BYOA [bring-your-own-app] wave is having even a greater business impact than the preceding BYOD one," Singh said. "The dispersed data landscape it has created, with so much data outside the firewall, limits any business's ability to protect and control how data is accessed and used. Druva gives IT the ability to reclaim control of this data by helping organizations ensure their data, regardless of location, is fully protected and governed."
Pressure on Enterprises to Keep Up With Regulations
Enterprises are being pressured to stay one step ahead of the compliance curve with global data privacy and industry-specific regulations—such as the Health Insurance Portability and Accountability Act (HIPAA), Payment Card Industry Data Security Standard (PCI DSS), Fair and Accurate Credit Transactions Act/Fair Credit Reporting Act (FACTA/FCRA), Gramm–Leach–Bliley Act (GLBA) and Children's Online Privacy Protection Act (COPPA)—that involve sensitive employee and customer data. Non-compliance and risk exposure have resulted in millions of dollars in fines, and even more in reputation damage, Singh said.
Druva Proactive Compliance enables organizations to track, monitor and be alerted of potential data risks associated with personal health care information (PHI), personal credit information (PCI), personally identifiable information (PII) and intellectual property (IP) across both cloud services and end-user devices. Features include:
--Centralized compliance dashboard: Compliance, security and legal teams have an easily navigable federated view by data source, compliance risk type, risk level, user as well as other pertinent information to make quick assessments and investigate infractions.
--Non-compliance reporting: Compliance and information security teams can subscribe to regulation or policy-specific reports, which are automatically generated and emailed to subscribers when potential data risks are discovered.
--Predefined, customizable compliance templates: Organizations can select from predefined compliance templates (ex. HIPAA, GLBA or PCI) or customize their own. inSync will automatically scan, identify and alert the organization of risks as necessary.
--Investigative searching: Companies that conduct internal investigations on behalf of a legal request or need to identify sensitive data (HR data, IP or financial records) can use inSync's new deep-search capabilities to pinpoint materials across their end-user data.
inSync is able to provide an auditable trail of a file's history and a litmus test for its unmodified integrity, Singh said.
Druva Proactive Compliance is part of the new inSync Elite+ Plan and will be generally available in August, Singh said. To learn more, go here to register for a webinar, "Where In The World Is Your Sensitive Data? How To Stay Ahead of Data Risks in Today's Mobile and Cloud World," on Aug. 13, 2015, at 1 p.m. ET/10 a.m. PT.