Press
April 10, 2024

Metomic Finds 37% Of Publicly Shared Files Contain Personally Identifiable Information

The amount of “stale” personally identifiable information (PII) that lives within easily accessible documents opens the door to major data security concerns during tax season

Download
Download

London, England, April 10, 2024  – Metomic, a next generation data security solution for protecting sensitive data in the new era of collaborative SaaS, GenAI and cloud applications, today released the findings from its “State of Data Security in Financial Services” report. Metomic’s research revealed a massive amount of sensitive documents saved in platforms like Google Drive, Slack, and other collaborative work apps have remained untouched for months, if not years, creating data sprawl issues for businesses and severe data security risks for both individuals and their employers. 

According to Metomic, data stored in collaborative work environments and easily accessible platforms like Google Drive frequently remains untouched: 86% of the files had not been updated in 90 days, 70% in over a year, and 48% in more than two years. The findings highlight the lack of data management oversight happening across industries, but especially for financial services organizations that often handle exorbitant amounts of personally identifiable information (PII). 

This “stale data” poses serious consumer data security issues for both individuals and businesses, opening the door to identity theft and data security breaches—especially during tax season when so much personal data is being shared across digital platforms. 

Last year, the U.S. Department of Treasury reported more than a million tax returns were flagged for potential identity theft, with over $6.3 billion in refunds requiring further scrutiny. During the same year, the IRS Identity Theft Victim Assistance program had 294,138 individual case receipts, according to the National Taxpayer Advocate’s annual report. Even more alarming is the fact that identity theft cases tripled in less than five years— in 2019, the same organization filed only 92,631 individual case receipts.

“The amount of extremely vulnerable personal data—social security numbers, financial information, credit card numbers—lurking in publicly accessible documents is extraordinary and an abundance of it exists in an abyss of forgotten digital documents that are creating ongoing data security threats, especially for businesses in the financial services sector,” said Rich Vibert, CEO and co-founder, Metomic. “Businesses are enabling unnecessary data security risks by allowing colossal amounts of outdated, stale files to take up space across their cloud-based apps. It’s imperative that IT and security teams have a data security platform like Metomic in place to gain full visibility into collaborative work apps like Google Docs and Slack so they can better manage those files, and delete any data that poses a security risk.”

In addition to helping financial services customers achieve a 7% reduction in sensitive asset creation within just three months, Metomic’s report also uncovered the following findings:    

  • When analyzing Google Drive access levels, Metomic found 2% of Google Drive files were publicly shared, 18% were available domain-wide (anyone with the same email domain as the file’s owner), 22% were shared with external domains, and 88% were stored in private user drives
  • Within an organization, the accounting, legal, HR, procurement, and customer success departments are more likely to share sensitive data than other business units
  • Among the public files flagged for containing sensitive data, 1% included payment card information and payment data—when looking at external files (files shared outside of an organization), that number goes up to 3%
  • Organizations are suffering from growing data sprawl challenges: The amount of sensitive data managed across all industries continues to increase by 1.3% every month

“The financial services industry is especially vulnerable because much of the data that passes between employees, partners, clients, and vendors contains personally identifiable information. And the number of files companies retain just keeps growing. It’s a major data security issue that is only going to get worse in the coming years, leading to more and more identity thefts, malicious cyber security attacks, and data breaches that have the power to paralyze an entire industry,” said Vibert. “Metomic gives these organizations the tools they need to keep their cloud-based work apps safe, while also empowering them to reduce the amount of data being saved.”  

Read the full findings from Metomic’s report at: The State of Data Security in Financial Services

About Metomic:
Metomic's data security software for SaaS, GenAI and cloud was born out of the frustration of its leaders trying to implement SaaS applications that make businesses more productive but are off limits because of high-risk security concerns. As a next generation security solution focused on cloud-based applications, Metomic gives security teams clear visibility into their organization’s SaaS network to manage sensitive data and detect security threats, allowing businesses to take full advantage of their SaaS application network. To learn more visit www.metomic.io.

Media Contact:
Claire Wilson
claire.wilson@metomic.io

Table of content
Table of contents
Table of contents
Table of contents
Table of contents
Table of contents

London, England, April 10, 2024  – Metomic, a next generation data security solution for protecting sensitive data in the new era of collaborative SaaS, GenAI and cloud applications, today released the findings from its “State of Data Security in Financial Services” report. Metomic’s research revealed a massive amount of sensitive documents saved in platforms like Google Drive, Slack, and other collaborative work apps have remained untouched for months, if not years, creating data sprawl issues for businesses and severe data security risks for both individuals and their employers. 

According to Metomic, data stored in collaborative work environments and easily accessible platforms like Google Drive frequently remains untouched: 86% of the files had not been updated in 90 days, 70% in over a year, and 48% in more than two years. The findings highlight the lack of data management oversight happening across industries, but especially for financial services organizations that often handle exorbitant amounts of personally identifiable information (PII). 

This “stale data” poses serious consumer data security issues for both individuals and businesses, opening the door to identity theft and data security breaches—especially during tax season when so much personal data is being shared across digital platforms. 

Last year, the U.S. Department of Treasury reported more than a million tax returns were flagged for potential identity theft, with over $6.3 billion in refunds requiring further scrutiny. During the same year, the IRS Identity Theft Victim Assistance program had 294,138 individual case receipts, according to the National Taxpayer Advocate’s annual report. Even more alarming is the fact that identity theft cases tripled in less than five years— in 2019, the same organization filed only 92,631 individual case receipts.

“The amount of extremely vulnerable personal data—social security numbers, financial information, credit card numbers—lurking in publicly accessible documents is extraordinary and an abundance of it exists in an abyss of forgotten digital documents that are creating ongoing data security threats, especially for businesses in the financial services sector,” said Rich Vibert, CEO and co-founder, Metomic. “Businesses are enabling unnecessary data security risks by allowing colossal amounts of outdated, stale files to take up space across their cloud-based apps. It’s imperative that IT and security teams have a data security platform like Metomic in place to gain full visibility into collaborative work apps like Google Docs and Slack so they can better manage those files, and delete any data that poses a security risk.”

In addition to helping financial services customers achieve a 7% reduction in sensitive asset creation within just three months, Metomic’s report also uncovered the following findings:    

  • When analyzing Google Drive access levels, Metomic found 2% of Google Drive files were publicly shared, 18% were available domain-wide (anyone with the same email domain as the file’s owner), 22% were shared with external domains, and 88% were stored in private user drives
  • Within an organization, the accounting, legal, HR, procurement, and customer success departments are more likely to share sensitive data than other business units
  • Among the public files flagged for containing sensitive data, 1% included payment card information and payment data—when looking at external files (files shared outside of an organization), that number goes up to 3%
  • Organizations are suffering from growing data sprawl challenges: The amount of sensitive data managed across all industries continues to increase by 1.3% every month

“The financial services industry is especially vulnerable because much of the data that passes between employees, partners, clients, and vendors contains personally identifiable information. And the number of files companies retain just keeps growing. It’s a major data security issue that is only going to get worse in the coming years, leading to more and more identity thefts, malicious cyber security attacks, and data breaches that have the power to paralyze an entire industry,” said Vibert. “Metomic gives these organizations the tools they need to keep their cloud-based work apps safe, while also empowering them to reduce the amount of data being saved.”  

Read the full findings from Metomic’s report at: The State of Data Security in Financial Services

About Metomic:
Metomic's data security software for SaaS, GenAI and cloud was born out of the frustration of its leaders trying to implement SaaS applications that make businesses more productive but are off limits because of high-risk security concerns. As a next generation security solution focused on cloud-based applications, Metomic gives security teams clear visibility into their organization’s SaaS network to manage sensitive data and detect security threats, allowing businesses to take full advantage of their SaaS application network. To learn more visit www.metomic.io.

Media Contact:
Claire Wilson
claire.wilson@metomic.io

London, England, April 10, 2024  – Metomic, a next generation data security solution for protecting sensitive data in the new era of collaborative SaaS, GenAI and cloud applications, today released the findings from its “State of Data Security in Financial Services” report. Metomic’s research revealed a massive amount of sensitive documents saved in platforms like Google Drive, Slack, and other collaborative work apps have remained untouched for months, if not years, creating data sprawl issues for businesses and severe data security risks for both individuals and their employers. 

According to Metomic, data stored in collaborative work environments and easily accessible platforms like Google Drive frequently remains untouched: 86% of the files had not been updated in 90 days, 70% in over a year, and 48% in more than two years. The findings highlight the lack of data management oversight happening across industries, but especially for financial services organizations that often handle exorbitant amounts of personally identifiable information (PII). 

This “stale data” poses serious consumer data security issues for both individuals and businesses, opening the door to identity theft and data security breaches—especially during tax season when so much personal data is being shared across digital platforms. 

Last year, the U.S. Department of Treasury reported more than a million tax returns were flagged for potential identity theft, with over $6.3 billion in refunds requiring further scrutiny. During the same year, the IRS Identity Theft Victim Assistance program had 294,138 individual case receipts, according to the National Taxpayer Advocate’s annual report. Even more alarming is the fact that identity theft cases tripled in less than five years— in 2019, the same organization filed only 92,631 individual case receipts.

“The amount of extremely vulnerable personal data—social security numbers, financial information, credit card numbers—lurking in publicly accessible documents is extraordinary and an abundance of it exists in an abyss of forgotten digital documents that are creating ongoing data security threats, especially for businesses in the financial services sector,” said Rich Vibert, CEO and co-founder, Metomic. “Businesses are enabling unnecessary data security risks by allowing colossal amounts of outdated, stale files to take up space across their cloud-based apps. It’s imperative that IT and security teams have a data security platform like Metomic in place to gain full visibility into collaborative work apps like Google Docs and Slack so they can better manage those files, and delete any data that poses a security risk.”

In addition to helping financial services customers achieve a 7% reduction in sensitive asset creation within just three months, Metomic’s report also uncovered the following findings:    

  • When analyzing Google Drive access levels, Metomic found 2% of Google Drive files were publicly shared, 18% were available domain-wide (anyone with the same email domain as the file’s owner), 22% were shared with external domains, and 88% were stored in private user drives
  • Within an organization, the accounting, legal, HR, procurement, and customer success departments are more likely to share sensitive data than other business units
  • Among the public files flagged for containing sensitive data, 1% included payment card information and payment data—when looking at external files (files shared outside of an organization), that number goes up to 3%
  • Organizations are suffering from growing data sprawl challenges: The amount of sensitive data managed across all industries continues to increase by 1.3% every month

“The financial services industry is especially vulnerable because much of the data that passes between employees, partners, clients, and vendors contains personally identifiable information. And the number of files companies retain just keeps growing. It’s a major data security issue that is only going to get worse in the coming years, leading to more and more identity thefts, malicious cyber security attacks, and data breaches that have the power to paralyze an entire industry,” said Vibert. “Metomic gives these organizations the tools they need to keep their cloud-based work apps safe, while also empowering them to reduce the amount of data being saved.”  

Read the full findings from Metomic’s report at: The State of Data Security in Financial Services

About Metomic:
Metomic's data security software for SaaS, GenAI and cloud was born out of the frustration of its leaders trying to implement SaaS applications that make businesses more productive but are off limits because of high-risk security concerns. As a next generation security solution focused on cloud-based applications, Metomic gives security teams clear visibility into their organization’s SaaS network to manage sensitive data and detect security threats, allowing businesses to take full advantage of their SaaS application network. To learn more visit www.metomic.io.

Media Contact:
Claire Wilson
claire.wilson@metomic.io

Latest posts

A Guide to Making Google Drive HIPAA Compliant

Is Google Drive HIPAA compliant? Learn how to assess & achieve compliance with strong security & Metomic's solutions for healthcare organisations.

Blog

GitHub DLP (Data Loss Prevention): The Ultimate Guide

This guide aims to provide actionable insights and best practices for implementing effective DLP strategies in GitHub environments to address these critical security concerns.

Blog