DLP Solutions (Global)

Information leaks

Losses from information leaks in organizations amount to tens of billions of dollars a year. A separate article is devoted to this topic on TAdviser.

Main article: Data breaches

2024: The volume of the global market for information leakage protection reached $2.92 billion for the year

In 2024, the costs of the global market for information leakage protection (Data Loss Prevention, DLP) amounted to $2.92 billion. This sector is showing rapid growth, as stated in a study by The Business Research Company, the results of which TAdviser got acquainted with at the end of June 2025.

One of the main drivers of the market is the deterioration of the cybersecurity situation. The number of incidents involving leaks of confidential and/or personal information increases. The transition to remote work amid the COVID-19 pandemic has stimulated the development of cyber threats and provoked an increase in the intensity of attacks. Leaks threaten companies with large fines from regulators and reputational damage. Therefore, organizations around the world are actively implementing DLP tools.

DLP monitors and monitors user activity. If unauthorized data transfers are detected, the DLP system blocks the operation or notifies the information security specialist. In addition, certain protective actions can be performed automatically. DLP systems that allow you to block unauthorized information processing can significantly reduce the risk of data leakage and, as a result, protect your company from possible negative consequences. DLP tools are able to detect indirect signs of threats that may indicate fraudulent activity: such patterns may include unusual communication between employees, atypical connections, bursts of data transfer, etc.

Artificial intelligence has a significant impact on the market. AI algorithms are able to analyze huge amounts of heterogeneous information with high efficiency, revealing signs of fraudulent actions or abnormal activity. In addition, AI can predict risks, which prevents possible leaks. On the other hand, attackers also use AI to increase the effectiveness of attacks and implement sophisticated schemes to deceive users.

At the same time, there are also certain restraining factors. DLP systems require careful configuration of security policies to minimize false positives. Implementation of such tools can be costly. DLP also places an additional burden on your organization's IT infrastructure.

DLP systems are implemented by financial and insurance companies, industrial enterprises, retail companies, IT organizations, educational institutions, government agencies, service B2B companies, etc. Geographically, North America provided the largest share of revenue in 2024, however, the Asia-Pacific region is showing the highest growth rate. Globally, significant players are named:

• Microsoft
• IBM;
• Cisco Systems;
• Broadcom;
• SAP SE;
• BAE Systems;
• Thales Group;
• VMware;
• Fortinet;
• Citrix Systems;
• Check Point Software Technologies;
• Trend Micro;
• CrowdStrike Holdings;
• Proofpoint;
• RSA Security;
• BlackBerry;
• Forcepoint;
• Idera;
• Trustwave Holdings;
• McAfee;
• Sophos;
• CA Technologies;
• Netskope;
• CoSoSys;
• Code Green Networks;
• Zecurion DLP;
• Avanan;
• GTB Technologies.

At the end of 2025, it is expected that expenditures on the DLP systems market will amount to about $3.7 billion. In the future, the CAGR, according to analysts at The Business Research Company, will be at the level of 27.5%. As a result, by 2029, costs may increase to $9.76 billion.^[1]

2023: Global Data Loss Prevention Systems Market Size Up 13% Year to $3.39 Billion

In 2023, the costs in the global market for data loss prevention systems (DLP) amounted to $3.39 billion. This is 13% more compared to 2022, when expenses in the corresponding segment were estimated at $3.01 billion. The industry is showing significant growth, driven primarily by the increasing complexity and intensity of cyber attacks. Market analysis is given in the material Market Research Future, published in mid-November 2024.

Amid the ongoing digital transformation, the threat of data breaches and cyber intrusions has become more pronounced. Organizations recognize that protecting sensitive information is critical not only for compliance, but also for maintaining customer trust. This forces enterprises around the world to invest extra money in security systems that can control and protect data in a variety of environments, including cloud, on-premises, and hybrid platforms. As a result, the cost of DLP tools increases.

The introduction of strict legal requirements for ensuring security has a significant impact on the industry in question. Organizations are facing increasing pressure to manage data responsibly. Failure to comply with the established standards can lead to serious fines and reputational damage. In such a situation, enterprises around the world are forced to invest additional funds in DLP technologies.

Another driver is the development of the cloud infrastructure. Migrating to such platforms provides flexibility, efficiency, and scalability, but at the same time creates concerns about data security and protecting sensitive information from unauthorized access. Companies recognize the need to implement advanced DLP technologies that can protect information when it is moved to and retrieved from the cloud.

The authors of the study identify five key segments in the market in question: Data Loss Detection and Prevention, Endpoint Security, Network DLP, Cloud DLP, and Email Loss Prevention. In 2023, it is estimated that the first of these groups accounted for $0.688 billion. Endpoint protection provided $0.89 billion. The segments of network and cloud DLP accounted for $0.607 billion and $0.728 billion, respectively, while email protection brought in $0.477 billion. The list of key market players includes:

• Broadcom;
• Symantec;
• ProtectWise;
• Palo Alto Networks;
• Forcepoint;
• IBM;
• Varonis;
• Trend Micro;
• Microsoft;
• Check Point Software;
• CloudLock;
• Centrify;
• Digital Guardian;
• McAfee.

In 2023, North America leads geographically with costs of about $1.2 billion: the dominance of this region can be explained by a strong emphasis on cyber security and strict regulatory requirements. Next comes Europe with an estimate of $0.9 billion. The Asia-Pacific region closes the top three, where costs amounted to $0.75 billion. Meanwhile, the Middle East and, Africa which are estimated at $0.24 billion in 2023, show significant growth. South America accounted for approximately $0.3 billion.

At the end of 2024, revenue in the global DLP market is estimated at $3.83 billion. Market Research Future experts predict that in the future the CAGR (average annual growth rate in complex percentages) will be 12.76%. As a result, by 2032, costs on a global scale could rise to $10.01 billion.^[2]

2020: Microsoft unveils its DLP solution

In November 2020, Microsoft launched the first data breach protection solution in its product line. Microsoft Endpoint Data Loss Prevention (DLP) is available to enterprise customers. Read more here.

2016: Gartner: Zecurion and InfoWatch among global market leaders DLP systems

In late January 2016, analysts Gartner unveiled a new version of the "magic quadrant" in the field of leak protection solutions. In the list of the best manufacturers - systems DLP were two Russian companies Zecurion - and. InfoWatch

They are located in a group of leaders among niche players next to Clearswift and Somansa. DLP manufacturers were evaluated according to two key criteria: strategic vision and implementation efficiency, which reflect the company's constant focus on the production of high-quality and innovative solutions, as well as a strategic vision of industry development and understanding of customer needs.

Gartner Magic Quadrant in Leak Protection Solutions, 2016

In the case of InfoWatch solutions, analysts noted the ability to scan and recognize official documents and seals, the coverage of a large number of languages ​ ​ in linguistic analysis technology and noticeable progress in Latin America, India and Asia-Pacific countries.

Experts attributed the lack of built-in content verification tools in InfoWatch EndPoint Security (this function is performed by network components, which limits its use for remote target devices) and cloud support based on its own API functions (Zecurion noted the same problem), as well as weak brand recognition of the company.

The advantages of Zecurion DLP products were considered by experts to be the built-in archiving function, OCR technology for content recognition, an extensive set of confidential data templates and dictionaries that are used as the basis for developing security policies.

Assessing the shortcomings of the Zecurion, Gartner analysts cited the company's weak presence in the global DLP market and the limited capabilities of the Zlock agent for Mac OS X and the lack of Linux support.

Among the leaders of the "magic quadrant" in the field of leak protection solutions are also Symantec, Intel Security and Forcepoint.^[3]

2014

Information security standard in banks

On June 1, 2014, a new standard for ensuring information security in banks, recommended by the Bank of Russia, came into force. According to the standard, the Bank of Russia recommends that Russian banks implement Data Loss Prevention (DLP) systems to prevent leakage of customer data. With their help, credit organizations will be able to analyze the correspondence of employees, as well as find out which Internet sites they use.

The new standard, which came into force on June 1, replaced the old one, which had been in force since 2010. The document for the first time refers to a "data breach" and spelled out measures to prevent it. To do this, the Central Bank of Russia allowed banks to use DLP (Data Loss Prevention - a system to prevent leaks). This type of software is installed on employee computers and corporate servers and allows you to track all their actions on the Internet, as well as correspondence and exchange of information.

The use of DLP obliges banks to archive email so that in the event of a leak of information, its source can be traced. In addition, the security standard implies the use of secure network protocols. According to the text of the document submitted to the Duma, the company is planned to be endowed with the opportunity to obtain the remote consent of a citizen to the processing of his personal data. Currently, this can only be done with the personal presence of a person.

• Central Bank policy in the field of information protection (cybersecurity)
• Policy of the Central Bank in the field of innovation and financial technology development

Anti-Malware

According to Anti-Malware forecasts made in September 2014, according to the results of 2014, the volume of the Russian DLP systems market will amount to $85-88 million. Large business (64%), the public sector (26%) and medium-sized businesses (10%) are leading in implementing DLP systems in Russia.

Gartner: Market Size $830 Million

Analysts of the company Gartner adhere to the estimate of the market volume in 2014 at $830 million.

ABI Research: Market Size $1.7 Billion

ABI Research estimates that the DLP market was able to reach $1.7 billion by the end of 2014.

2013: IDC estimates market size at $634 million, Gartner forecast at $680-710 million

According to preliminary estimates, IDC the volume of the global market DLP of systems in 2013 amounted to $634 million. Analysts Gartner predicted its volume in 2013 at the level of $680-710 million, in 2014 - $830 million (an increase of 22-23%).

2012: Gartner: Market Size $535m

Earlier it was announced that according to the Gartner Data Loss Prevention market research published by the analytical company DLP , its volume in 2012 amounted to $535 million, which is more than $100 million more than last year. The constant increase in corporate data losses makes it necessary to strengthen control over its transmission and processing, including deploying DLP systems. This led analysts to expect DLP sales to reach $670 million in 2013.

Gartner divides DLP systems into three classes:

• corporate,
• "lungs" and
• channel.

The former use sophisticated data content recognition technologies that are built into PC and server software agents, network monitoring tools, and data recognition software. They operate under the control of the central console, implement the security policies adopted in the organization and event management. Lightweight DLPs use basic technologies, support a limited number of data links (typically Web, FTP, and e-mail), and are typically installed to protect endpoints or the network; control capabilities are also limited. Channel DLPs are designed for integration into other information security tools, such as the email data encryption module; generally applied to meet regulator requirements.

Gartner analysts include the following companies among the "leaders" in the market:

• Symantec,
• Forcepoint (formerly Websense),
• RSA,
• McAfee,
• CA Technologies и
• Verdasys.

The group of niche players, along with several other companies, includes the Russian InfoWatch.

According to Gartner, about 35% of enterprises installed DLP systems due to network security requirements, 20% were guided by the need to recognize important data, and 45% needed to protect network endpoints.

2011

Ernst & Young: 38% of companies surveyed implemented DLP

According to an Ernst & Young study, in 2011, 38% of the surveyed large companies already implemented DLP systems to protect against leaks, and DLP products are in second place in the expenditure items of information security budgets (after business continuity and disaster recovery). According to InfoWatch, the coverage of DLP systems in the medium and small business (SMB) segment is significantly lower than the same indicator for large companies.

Natalia Kasperskaya (InfoWatch) about the DLP market

Geographically, the global DLP market, as noted by InfoWatchKasperskaya CEO Natalya, based on the experience of her company, is significantly heterogeneous. So, in Europe, according to her, at that time there were practically no fully functional DLP systems installed - only means of protecting against leaks through some separate channels. She sees the main reason for this in the legislation in force in most European countries that protects the secrecy of personal life (including private correspondence), which has a dominant influence on the use of data within government agencies and private companies. As a result, in countries such as Germany and France, a priori, it was believed that DLP tools could potentially violate the private rights of citizens during the performance of their official duties, which means that they should not be introduced. The opponents of the DLP were the trade unions of these countries.

At the same time, in English-speaking countries, for example, in the UK and the USA, where there are no such laws that so categorically protect the secret of private life, DLP funds were then actively used. According to InfoWatch, countries in the Middle East have begun to show great interest in DLP. The DLP market in India has also developed rapidly, however, as Ms. Kasperskaya noted, users there only agree to offers that are lower in price compared to European and American once every ten. Nevertheless, vendors went to meet these customers in the hope of receiving lost profits later.

2010

InfoWatch registered 794 data leak incidents, 28 in Russia

According to the results of a global study of confidential information leaks conducted by InfoWatch, the steady increase in the number of information security incidents is due to the constantly increasing volume of corporate information with a fairly slow implementation of its protection and encryption tools. So, in 2010, InfoWatch analysts registered 794 incidents (that is, more than two leaks per day) that occurred in organizations as a result of malicious actions of insiders or careless actions of employees.

As the study showed, the total number of compromised data in 2010 (when it comes to personal data) amounted to almost 654 million records, which is 100 million more than the previous year. Thus, personal data remains the most tidbit for scammers (95% of the total number of leaks), since it is easy to sell them on the black market, according to the company. Commercial secrecy (slightly less than 2%), as well as state (1.5%), hardly finds its buyer.

A significant number of incidents, according to InfoWatch, are due to the loss of mobile computers and flash drives on which information was not encrypted (19% of the total). In 2010, the share of accidental leaks increased by 10%, and the share of intentional leaks decreased by 8%.

The ratio of accidental to intentional leaks continues to fluctuate around 60/40. This suggests that methods of counteracting leaks should still focus on both types of leaks, without giving preference to one of them. However, InfoWatch analysts predict an increase in the share of intentional leaks and a decrease in accidental due to the large number of implementations made in 2010.

As Nikolai Fedotov noted, despite the fact that the number of leaks through the Network slightly decreased (by 14%), there was a tendency for personal data leaks through social networks, as evidenced by loud discussions around Facebook and MySpace in 2010.

In Russia, during the reporting period, 28 incidents of leakage of confidential information were recorded. Most of the leaks belonged to the category of intentional and were associated with the personal data of Russian citizens who leaked from banking and government agencies, InfoWatch reported. At the same time, a considerable part of the leaked data was used to commit fraudulent actions. The financial damage in 2010 from leaks, according to estimates by the InfoWatch analytical center, exceeded $200 million.

IDC: Global DLP Market Size $362m

According to IDC analysts, the global DLP market in 2010 was $362 million. With IDC's growth of about 17% per year (according to Gartner - 20%), the projected market volume by 2015 will amount to about $808 million in monetary terms.

Notes