Salesforce is the most widely adopted CRM platform in the world. With this, comes the responsibility of transmitting and storing very sensitive data from the world’s top companies. Salesforce takes this very seriously and released Salesforce Shield back in 2015. Salesforce Shield introduces a suite of compliance and regulation-focused add-ons to the Salesforce platform to help their customers in heavily regulated industries rest easy knowing that an additional layer of security is protecting their data.
Salesforce Shield consists of three separate products that work together to secure your org’s data.
Shield Platform Encryption enables you to encrypt sensitive data at rest, and not just when transmitted over a network, so your company can confidently comply with privacy policies, regulatory requirements, and contractual obligations for handling private data. Salesforce gives you a huge array of fields that you can encrypt including standard fields, custom fields, activity fields, files, chat transcripts, email messages, and more. Salesforce also includes standard encryption for their industry products like Health Cloud and Financial Services Cloud based on industry requirements.
Standard Salesforce Encryption vs Shield Platform Encryption:
Getting Started with Platform Encryption
Shield Event Monitoring captures information on what data is being accessed by all users. It captures the accessed data as well as the device and IP address of that device at the time of viewing. Salesforce makes this data accessible as a spreadsheet file that can be downloaded and viewed with any data visualization tool of the client’s choice. To learn more about our opinion on commonly used data visualization tools, read this post.
Getting Started with Event Monitoring
Shield Field Audit Trail functions similar to Time Machine for Mac or versions for Office. That is, users can go back in time to see the field history of all of their records. This is beneficial for a lot of reasons, but the most common use cases are to look back in time to see the history of fields within a contact, company, or case record to see the history of these fields. You can also choose how long you keep this information on file. Many of our clients are required by law to keep information on file for 6+ years, but your governance may vary based on your industry.
Getting Started with Field Audit Trail
With Salesforce Shield being publicly available to all Salesforce customers, we would advise discussing your current data strategy and further informing you how our clients are addressing this. If you’re interested in learning more, please reach out to us to set up a security model discussion!
Partner and Chief Revenue Officer