February 6, 2024 – Prime Factors, a leader in application-level data protection, has been recognized by Gartner® among Data Security Platform (DSP) Vendors in the 2024 Market Guide for Data Security Platforms report. 

In the Market Guide for Data Security Platforms, 2024, Gartner has recognized the Prime Factors EncryptRIGHT® software among Representative DSP Vendors. We believe that this underscores our commitment to delivering robust security software that simplifies data protection with flexible and scalable functionality, that effortlessly deploys and consolidates a variety of controls in one single platform.  

According to Gartner, “Most organizations have outdated policies and frameworks, and obsolete tools that only focus on finding attackers. These tools lack adequate capabilities to secure data for advanced use cases requiring internal and external data sharing.” However, they suggest that “Data security platforms combining data security controls with business logic and fine-grained authorization lead to significant gains in efficacy and data security. This Market Guide informs security and risk management leaders of the definition, rationale and dynamics of the DSP market.” Gartner goes on to highlight, “An explosion of data policy elements and rules is encouraging vendors to rapidly amalgamate disparate data security capabilities into data security platforms. Organizations applying DSPs are streamlining data access controls and protection, resulting in better data security observability and improved security and regulatory compliance.” 

“We continue to see enterprises working to improve overall data security and compliance, while struggling with the growing complexities that these efforts produce, particularly when security is elevated to the application layer, where most breaches occur,” said Justin Teitt, Chief Operating Officer at Prime Factors. “Enterprises grapple with fragmented data protection solutions that demand extensive integration efforts, which leads to prolonged implementations, only to face expensive re-work as the market or data protection demands shift. However, EncryptRIGHT, which focuses on providing a broad suite of data protection functionalities at the application level, was designed to simplify data protection, drastically reducing integration effort and costs. This has empowered organizations to not only achieve broad-spectrum data protection at the application level in a matter of days, instead of months or quarters, but also change their data protection over time without any additional integration work or costs." 

Gartner suggests that enterprises “Favor DSP products that cover a variety of data stores and business applications to provide the most flexibility at deployment.” Several must-have capabilities for DSP products are highlighted in the note, including “Field-level or data-object-level granularity authorization policies enforced through, for example, dynamic data masking (DDM), format preserving encryption (FPE) or tokenization, data store APIs or access control policy formats native to a particular database.”  

Gartner highlights “the migration of data to cloud environments” as one of the key drivers of interest in DSPs. “This is a pivotal transition for many organizations, enhancing flexibility and scalability. DSPs are instrumental in this shift, providing the necessary security infrastructure to protect vast volumes of data as the data moves to public clouds. With the ability to scale security protocols alongside data growth, DSPs ensure that as enterprises take advantage of the cloud’s potential, they do so with a strong posture against threats and in compliance with regulatory demands.” However, Gartner cautions that the “lack of coverage for on-premises data stores” is an ongoing challenge of DSP adoption. “While vendors frequently focus on cloud-based data repositories and business applications, on-premises databases often do not receive the same level of support. This can lead to significant challenges for customers who rely on these traditional data storage solutions, as they struggle to find appropriate DSPs.” 

“We’re seeing many enterprises make the shift to the cloud as they modernize their applications, but typically this is not an immediate, wholesale change,” Teitt said. “Most of our customers are managing hybrid infrastructure in which some applications migrate to the cloud, while others, often legacy applications, stay on-premises longer (or even permanently). Often, both cloud and on-premises applications must access the same dataset, creating distinct challenges for solution providers that only offer cloud-based SaaS solutions. EncryptRIGHT, however, is designed to secure data at the application layer, wherever an application resides. Whether it’s on-premises, in the cloud, or across hybrid environments and geographies, EncryptRIGHT can seamlessly secure data and enforce privacy using a variety of encryption, masking, and tokenization techniques.” 

Gartner clients can access the full report here. 

*Gartner, “Market Guide for Data Security Platforms”, Joerg Fritsch, Brian Lowans, Andrew Bales, January 5, 2024. 

Gartner Disclaimer 

GARTNER is a registered trademark and service mark of Gartner, Inc. and/or its affiliates in the U.S. and internationally and is used herein with permission. All rights reserved. 

Gartner does not endorse any vendor, product, or service depicted in its research publications, and does not advise technology users to select only those vendors with the highest ratings or other designation. Gartner research publications consist of the opinions of Gartner’s research organization and should not be construed as statements of fact. Gartner disclaims all warranties, expressed or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose.