🔒 Introducing Harmony Browse DLP: Real-Time Data Protection for the Modern Web
A new layer of intelligent, browser-level security across your endpoints
Organizations are increasingly exposed to data leakage risks through everyday web usage—file uploads, form submissions, GenAI tools, cloud storage, and more. Harmony Browse DLP, part of Check Point’s Harmony Endpoint suite, delivers a powerful, seamless way to prevent sensitive data from leaving the browser in real time.
🚀 What Is Harmony Browse DLP?
Harmony Browse DLP inspects and controls data shared via the browser—whether typed, uploaded, pasted, or downloaded—ensuring users stay productive while sensitive information stays protected. Integrated directly into the endpoint browser extension, it provides full visibility and control over data-in-use across web applications and GenAI tools.
🔍 Key Capabilities
- Real-Time Browser-Level Inspection
- Inspects HTTP/HTTPS traffic directly in the browser
- Detects sensitive data in text fields, uploads, downloads, and clipboard actions
- Supports structured & unstructured formats, including files, images, text, and metadata
- Advanced Data Classification
- Identifies data types, including predefined Check Point types, custom categories, general sensitive data and more.
- Supports custom data types using keywords, patterns, ML-based detection, or grouping
- Threshold-based logic reduces false positives
- Policy-Based Prevention
- Control by event type: File Upload, Text Control, Paste, File Download, Copy
- Target rules by URL, domain, category, or specific AI applications
- Actions include Prevent, Detect, Allow, Ask, Redact
- Integrated GenAI Protection
- Identifies shadow AI usage
- Detects risky GenAI sessions and sensitive content exposure
- Classifies sessions by risk score and use-case
- Enables audit trails for compliance (GDPR, HIPAA, PCI DSS, etc.)
- Seamless Endpoint Integration
- Deployable via Windows, macOS, Chrome OS, and AD Integration
- Centralized management via Infinity Portal
- Easy installation through direct link, email or download
🛡 Common Use Cases
- Blocking uploads of confidential files to public cloud tools
- Redacting credentials before they are submitted to GenAI tools
- Preventing source code leakage from AI chat interfaces
- Asking for justification when users paste sensitive data online
🧩 Managing Data Types & Labels
Harmony DLP includes:
- Custom Data Types (keywords, patterns, or ML-assisted templates)
- Groups to combine multiple data types
- Sensitivity Labels, mapped via UUID, for advanced classification
- Editable thresholds for granular tuning
📏 Policy Structure
Policies are split into two layers:
- Scope Definition
Define where the rule applies:
- Specific endpoint groups (Windows/Mac/Linux)
- Rule Actions
Create outbound & inbound controls:
- Outbound: Uploads, text, clipboard actions
- Inbound: Downloads, copy actions
Examples:
- Prevent file uploads containing CSV/TXT/PDF to web.whatsapp.com
- Redact credentials/IP data submitted to AI tools
- Ask for justification before pasting PHI/PII/PCI into ChatGPT or Gemini
- Block code copying from GenAI environments
📊 GenAI Protect Dashboard
Available for EU & US tenants, the dashboard provides:
- Risky sessions by severity
- Sensitive data exposure types
- Full session and content auditing
- Filters for apps, users, content, and service categories
🧭 Why Harmony Browse DLP Matters
Organizations face a massive rise in browser-mediated data loss—especially via SaaS and GenAI tools. Harmony Browse DLP offers:
✔ Zero-disruption data protection
✔ Real-time visibility into GenAI workflows
✔ Browser-native prevention with no latency hit
✔ Adaptive ML-based detection
✔ Strong compliance support (GDPR, HIPAA, PCI, etc.)
✔ Deep integration with Harmony Endpoint and Check Point TP
Technical Marketing Engineering Team
