Google Drive

Detect & Mask (Redact) Sensitive Files - Google Drive DLP


Google Drive users send files that contain customer’s personal information (PII or PHI) in order to get their work done. Some of the burning problems on why your Google Drive account needs to be protected:

  • Regulatory Compliance: If you're using Google Drive to store personal data, health information, financial data, or other types of regulated data, a DLP strategy can help ensure compliance with relevant regulations, such as GDPR or HIPAA.
  • Wide User Base and Accessibility: Google Drive is used by millions of people across the world, and it's accessible from any device with an internet connection. This makes it a potential target for cybercriminals.
  • Collaboration and Sharing: One of the key features of Google Drive is the ability to easily share files and collaborate with others, both within and outside your organization. While this is a powerful feature, it also increases the risk of data leaks.
  • Variety of Data Types: Google Drive can store a wide variety of data types, including documents, spreadsheets, presentations, images, videos, and more.
  • Integration with Other Apps: Google Drive integrates with many other apps, which can potentially access the data stored in it.
  • User Error: Accidental deletion or modification of files is a common risk in platforms like Google Drive.


Strac Google Drive App is a Data Loss Prevention (DLP) software which is highly alert driven and solved all the above problems:

  • It discovers (aka detects) sensitive files. You can turn on Strac Google Drive App to just get findings of sensitive files shared.
  • It masks (aka redacts) sensitive data elements in Google Drive files while still giving the opportunity to authorized users to view the original file in Strac UI Vault. With Strac's redaction experience sensitive PII or PHI data is blocked.
  • It prevents unauthorized file sharing if configured. Strac helps control who can access and share data. You can build a workflow around file sharing. For e.g., share a file only if an owner approves it.
  • It ensures all types of data are appropriately protected.
  • It helps control which apps can access your data, and prevent unauthorized data access through the SaaS apps that are integrated with your Google Drive account
  • A business can configure a list of sensitive data elements (SSN, DoB, DL, Passport, CC#, Debit Card, API Keys, etc.) to redact. Compliance, Risk and Security officers will get audit reports of who accessed what messages.

Below is a sample list of sensitive data elements that will be detected & redacted:

  • Identity: Drivers License, Passport, SSN (Social Security Number), National Identification Number, etc.
  • PII: Name, Address, Email, Phone, DoB, Age, Gender, Ethnicity, etc.
  • PHI: PII data, Medical Record Number (MRN), Insurance ID, Health Plan Beneficiary Number, Biometric, Medical Notes, etc.
  • Payments (aka Financial Details) or PCI (Payment Card Industry) Data Elements: Bank Account, Routing Numbers, Credit Card Number, CVV, Expiration Date, Debit Card, IBAN, etc.
  • Secrets: API Keys, Passwords, Passphrases, etc.
  • Vehicle: License Plate, Vehicle Identification Number (VIN), etc.
  • Physical Network: IP Addresses, MAC Address, etc.
  • Crypto Secrets: Seed Phrase, Bitcoin, Ethereum, Litecoin Addresses, etc.
  • Profanity: Curse words, abuse words, offensive content, etc.
  • Voice Call Recordings: Audio or Video recordings that have sensitive data
  • Custom: Create your own rules or use regex

Checkout Strac's catalog of sensitive data elements that Strac automatically detects and redacts.


Please contact for any questions