Secure delivery of sensitive data | Fluid Attacks Help

Secure delivery of sensitive data

Here is what we do to reduce information leakage when delivering data to our clients.


Secure information-sharing system

We use an information-sharing system with DLP (data loss prevention) when sending sensitive information to our clients. This includes contracts, portfolios, and other sensitive documents.


Signed URLs

Our platform can create signed download URLs with an expiration date when downloading reports, meaning that links expire and can only be used by the user who requested the download.


Onion routing

The Fluid Attacks domain supports onion routing, which enhances user privacy and enables more fine-grained protection.


Passphrase-protected reports

All reports downloaded via Fluid Attacks' platform have a randomly generated four-word passphrase. This passphrase is sent to the email of the user who requested the download. This applies to both XLS and PDF formats.


Watermarked reports

Every report that is downloaded via our platform comes with a watermark on all pages, specifying that only the individual who generated it is allowed to read it. This is used as a measure to identify who generated the report in the first place and discourage its distribution through channels other than our platform.


Requirements

  1. 032. Avoid session ID leakages
  2. 045. Remove metadata when sharing files
  3. 132. Passphrases with at least 4 words
  4. 261. Avoid exposing sensitive information
  5. 300. Mask sensitive data