Over 85% of data within an organization is unstructured. Of this unstructured data, 75-80% of it is dark and infrequently accessed. This includes industry-specific data like trial information in the healthcare sector, PII data, and proprietary information in the industrial and manufacturing sectors.
This data is seldom sent, shared, or used and is often referred to as legacy data or data at rest. Generally, it is stored in a single central repository (file servers, public/private cloud repository, etc.), with little or no security. Even with AES encryption, organizations are faced with the hassles of key management, making them vulnerable to a single point of failure. This kind of data, if leaked, could cause severe damage to the organization in terms of business continuity, loss of revenue, reputation damage, and fines.
SplitByte helps secure this sensitive data for organizations by using its patent-pending algorithm and ensures the highest level of protection. SplitByte puts encrypted fragments of data in multiple geo dispersed locations, so even in case of a breach at one of the locations, zero information is revealed. The data can still be retrieved because of the application’s redundancy capability.
Information is constantly exchanged throughout organizations over TLS/SSL channels for day-to-day communication, including amongst organization stakeholders. Data in motion like board meeting documents, merger/acquisition materials, and other important information is often sensitive and would be dangerous in the wrong hands. .
Data on the move is under constant threat of being compromised. Its security is paramount no matter the type of organization, but for federal agencies or branches of the military who may be sharing classified information during operations, its security can be life or death.
SplitByte provides a unique solution to this problem. Users can fragment the data into multiple unreadable pieces and send each piece separately via TLS/SSL. For added security, data can be sent in parallel across multiple bandwidths and with decoy splits between the real information to provide further protection.
Data lifecycle management is of prime concern today. A certain retention period is determined for data based on internal records management policies and GDPR/CCPA compliance requirements, after which it should be deleted. Though it is required by law, organizations fear deleting this data at death, anticipating the possibility it will be called as evidence in a lawsuit.
Deleting this data is necessary for compliance, however, the organization loses access to it permanently. Thus, organizations are faced with the dilemma of choosing either compliance today or legal documentation tomorrow.
SplitByte digitally “buries” this data with smart escrow contracts which allows it to be accessed with proper permissions but is otherwise isolated from the organization. Partnerships with trusted custodians like PWC and Accenture enable access to “deleted” data when deemed legal and necessary.