Is your sensitive data safe with Scribe? Here's how we secure your information and ensure privacy.
As businesses move towards digital transformation, you need data security that you can count on.
At Scribe, we’re transforming the knowledge-sharing process so that it’s easier than ever to document and share how-to. But your sensitive information is just as important to us as your productivity. And we want you to know that you’re in good hands.
Here’s how Scribe prioritizes data security and ensures privacy.
Why security matters when using Scribe
Scribe generates how-to guides when you enable it to record your screen. So it’s easy to wonder if your sensitive data — whether it’s internal or customer records — might be shared or compromised.
That’s why we provide Scribe-managed security measures such as data encryption and intrusion prevention to secure your data. Alongside user-enabled features, including data redaction, we support your needs for data minimization. This ensures that our Scribe users are sharing the minimum amount of data, while still being useful.
Let’s dig a little deeper.
How Scribe secures your data
At Scribe, we have a two-pronged approach to ensure data security.
First, we have a robust internal security infrastructure. We're also independently SOC II compliant to ensure security standards are met.
Second, we provide users with features to self-regulate data shown in their Scribes. We offer service tiers with data reduction features and team-based governance. And our Smart Privacy Screen is an automated reduction feature for our Enterprise level security feature.
Scribe's security tools
We offer three types of data reduction features, including:
- Smart Blur.
- Manual Redaction.
- Smart Privacy Screen.
These features, plus our Enterprise user permissions, help you keep your organization safe from breaches and ensure your data and privacy are protected.
1. Smart Blur
Smart Blur is ideal for users who work with systems that display sensitive information.
Say someone’s recording a Scribe in their medical billing system about how to run a report on outstanding invoices. That’s sensitive data.
This feature makes sure you can quickly and automatically scrub names, email addresses and other proprietary information -- before they end up in your screenshots.
Users can choose from several options, like Precision Blur, to redact specific data. Plus, you can see the entire screen and watch the blur happening in real-time, so that no sensitive details are missed!
2. Manual Redaction
Manual Redaction is perfect for users looking to redact a few specific pieces of information.
Let’s say you’re scribing something in a system that’s not terribly sensitive — for example, making a Scribe in Hubspot for how to update opportunities for sales reps. In this situation, it might even be helpful for the team to see some of the data, but you still have a few details you want to hide.
In this scenario, you want to be precise. Manual Redaction lets users draw boxes around the information they want to redact, and the system overrides the data in both the production and backup databases to make sure that information can't be reverse-engineered.
3. Smart Privacy Screen
Smart Privacy Screen supports Enterprise customers who need to protect all screen activity.
Pretend you’re a central system admin at a healthcare company. You’re responsible for making sure that company Scribes don’t expose sensitive data to vendors or maybe even internally. Still, you have several critical processes that you need Scribes for.
Smart Privacy Screen helps those enterprise IT Administrators confidently secure information while still helping end users get the most out of Scribe.
Unlike Smart Blur and Manual Redaction, Smart Privacy Screen works with both the browser plugin and desktop, and is fully managed by the Enterprise administrator. This means employees can’t change settings and mistakenly expose regulated data.
In this scenario, the company admin would navigate to our Enterprise admin panel to the SPS config option. They could then toggle on and off which categories they’d want to redact. This might be:
- Passport number.
- Credit card number.
- Healthcare identification number.
… and even technical data like HTTP cookies. This feature is also great for jurisdictional regulations like GDPR and CPR.
Once the admin toggles on which categories they want blocked, any Scribe your team makes will automatically add a gray box covering the privatized info in your screenshots.
It’s important to note that this redaction doesn’t happen after the image touches our servers — it’s done before it ever lands in Scribe’s environment. This is major for regulated industries, like healthcare folks following HIPAA, which states that once an image is transmitted to a vendor’s server, it’s considered “shared” with them.
Smart Privacy Screen redacts everything before it exits your own corporate environment. This way you can securely share Scribes without the added stress, not to mention all that time you’d lose manually redacting on your own.
4. User permissions
When it comes to user access, you might be asking:
“What Scribes can my team see?”
“What about authentication?”
“Can employees just share these Scribes whenever they want?”
“Can we trust that the redaction is going to flow through our employees?”
And most importantly: “Do we know for certain that we’ve gotten rid of that sensitive data?”
With these requirements in mind, we’ve built additional security features in the Enterprise administration panel.
Let's say that you’ve developed a proprietary system for your company. Your software engineers need to record Scribes to teach people how to use the system — but you also have your own internal HR department that you don't give access to. Or maybe you’re in a government agency, and certain teams don’t even have clearance to view the system.
With Enterprise, you can build different teams with different access levels.
For example, if HR is Team A and software engineers are Team B, you can limit what each team can view and share, or make sure they can’t see anything made by the other team. You can also enable viewer roles for team members who won’t be creating Scribes.
We also offer SSO integration to Enterprise teams. It’s all part of our goal to support Enterprise administrators in protecting your data and your own Scribe environment with folks logging in.
Securely share how-to
Your security is our priority. That’s why we’ve built several powerful features to help your teams protect sensitive data while building Scribes.
Whether you need to blur out specific data, manually redact sensitive information, or protect all screen activity across your enterprise, we’ve got you covered.
Check out our Security page to learn more, or connect with us directly at [email protected]!