• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 737
  • Last Modified:

prevent documnets from being printed

I am looking for a product we can use so that users can view documents or part of the access database but they can not print them. i seen a product that someone used where if you printed a doc it turned black. What I am trying to do is make it harder for current employees to steal data. We may remove USB ports and DVD players. any recommendations?
3 Solutions
This isn't your answer, but if users can see it, it can be captured - be it by a screen grab sent to the printer or even a camera.
I'd focus more on limiting access to those who require it and possibly logging activity to make it easier to track down leaks to individuals.
use PDF files.

in pdf files you can:

1. password protection to open pdf file.
2. password protection to Change Security Options
3. encryption
4. prevent users from printing the file.
5. prevent users from creating form fields, as well as making any other changes.
6.  Disable Accessibility to prevent user from copying text and graphics, and disabling the accessibility interface.

and more
The rule is very simple: once you can see, you can copy. so with a printscreen and a OCR ( optical Character Recognition) software, your information is leaked.

You may want to use PDF and its security set, but, with can be easily cracked/ security removed with some PDF Security remover softwares( i.e Advanced PDF Password Recovery)

Other option: use windows Rights Management Servers.

So you should go on the direction mentioned by kram0: controll access to these files, with logs turned on.
jeffsteffyAuthor Commented:
I have security groups setup in AD which determines which users can see network drives ect. certain users need access to the database for thier jobs, we dont want them taking data and selling it or whatever. could you explain logging activity to make it easier to track down leaks to individuals. How do i do this?
You can turn on file access auditing in AD using a policy (Computer Configuration => Windows Settings => Security Settings => Local Policies => Audit Policy => Audit Object Access).
Then when you go to the individual files or directories you want monitored, turn on auditing by going to the properties => security => advanced => auditing. Add the group you want to audit (probably "everyone") and set the access to log.
It will then show who has attempted to access monitored files from which machine in the local server's system event log.
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Easily Design & Build Your Next Website

Squarespace’s all-in-one platform gives you everything you need to express yourself creatively online, whether it is with a domain, website, or online store. Get started with your free trial today, and when ready, take 10% off your first purchase with offer code 'EXPERTS'.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now