Poster 1 of 2

15%

Protect Client Data · June 2026 Edition

All Employees & Contractors · ~10 min read

⚡ Executive Snapshot

Top RiskAccidental exposure of client data via insecure sharing or cloud misconfigurations

Trending ThreatUnauthorized data transfers — personal drives, unapproved SaaS tools

Do This NowUse only approved storage and follow data classification rules

AvoidCopying client data outside managed environments — even "temporarily"

🚨 Threat of the Month

"It's Not a Hack — It's a Slip"

Misconfigured cloud storage (public buckets, open access)
Sending sensitive files over personal email or chat inadvertently or foolishly
Using unauthorized tools, methods, or jugaad to "move fast"

Why this matters: A small mistake on client infrastructure can lead to contract violations, regulatory penalties (especially in healthcare & finance), loss of client intellectual property and trust, and potential job-level consequences.

🛠️ Role-Based Actions

Role	What to Do
👩‍💻 Developers	Never hardcode secrets or client data in code/repos
☁️ Cloud / Admins	Review access permissions monthly (least privilege)
📊 Analysts	Use only approved tools for data transfer & storage
👥 Everyone	Classify data before sharing and verify recipients

🔒 Data Classification & Cyber Intelligence

Know Your Data. Know the Risk.

🧳 Micro-Learning: Data Classification

✈️

Public

Carry-on — safe to share openly

🧳

Internal

Checked bag — restricted use only

🔐

Confidential

Locked vault — strict control always

Rule of thumb: If it belongs to a client → treat it as Confidential by default.

📰 Cyber News: Why You Should Care

Cloud Data Exposure Incident

🔗 Read Article ↗

A major tech firm exposed sensitive client data due to misconfigured storage.
Why it matters: Same cloud patterns apply to your work.

Increased Regulatory Security in Healthcare

🔗 Read Article ↗

Stricter enforcement around patient data handling.
Why it matters: Even indirect access to health data brings compliance obligations.

SaaS Data Leakage via Shadow IT

🎬 Watch Video ↗

Employees using unapproved tools led to data leaks.
Why it matters: Convenience ≠ security, Jugaad may trigger security incidents

📌 Quick Reminders

🚫Never move client data outside approved environments

✅Always verify before sharing

🚨Report anything unusual immediately

❓When in doubt → ASK, don't assume

📋 Compliance Frameworks

ISO/IEC 27001NIST Cybersecurity FrameworkCIS Critical Security Controls

Security is not just a policy — it's a daily habit. You are the first and the last line of cyber defense.

"The safest systems are built by people who think before they click."

Monthly Quiz

Data Defender Challenge

Answer all 5 questions — results shown only after final submission.

Question 1 of 5Incident Response

You receive a request from a client to send logs urgently. The approved tool is down. What do you do?

AUse personal email to send the logs immediately
BWait or escalate to get an approved alternative
CUse WhatsApp or a messaging app
DUpload to a public link and share it

Question 2 of 5Data Handling

You find client data stored in an open, unprotected folder accessible to everyone. What's your first step?

AIgnore it — it's not your responsibility
BCopy it for your own backup purposes
CReport it to the right team and help secure it
DDelete everything immediately without reporting

Question 3 of 5Secure Transfer

Which method is the safest for sharing client data with a teammate?

ASharing via personal cloud storage (Google Drive, Dropbox)
BUsing the company-approved encrypted transfer tool
CUSB drive transfer directly to their laptop
DEmail attachment to their work address

Question 4 of 5Access Control

What does "minimum necessary access" mean in the context of data security?

AFull access for everyone to maximize team efficiency
BAccess granted based strictly on role and business need
CSharing credentials across teams for convenience
DAdmin-level access for all employees

Question 5 of 5Credential Safety

A teammate asks you for client credentials to "quickly fix something." What do you do?

AShare the credentials — they're a trusted colleague
BDecline and guide them to submit a proper access request
CIgnore the request entirely
DSend the credentials later when no one is around

🏆

Quiz Complete!

0/5

Here's your detailed breakdown.

Your Answers — Detailed Breakdown

Submissions

All quiz responses from Relanto employees & contractors. Export to CSV anytime.

⚙️

Setup required: Open this file in a text editor and set two values at the top of the <script> block:
SUPABASE_URL and SUPABASE_ANON_KEY (from your Supabase project → Settings → API).
Also set AZURE_CLIENT_ID and AZURE_TENANT_ID from your Azure App Registration.
Until then, responses are stored locally in this browser for demo.

Total Submissions

Perfect Scores (5/5)

—

Average Score

Submitted Today