SaaS Apps Security and OAuth Access Management for Google Workspace
Risk Assessment and Access Management for OAuth Apps and Chrome Extensions

Access Management and Risk Assessment for Google Workspace Admins, SecOps, and SaaSOps teams.
SpinOne helps Google Workspace Admins and SecOps teams manage OAuth access to Apps and Extensions within the company domain.
OAuth access management to sensitive data for Risky Apps and Browser Extensions is a top security threat. Employees can easily install a malicious app or extension then grant OAuth access to company-sensitive data. SpinOne Apps Security and Access Management for Google Workspace Data provide Google Workspace Admins full visibility of all major risks for their company so that they can protect sensitive data from insider attacks and advanced security threats.
Top Challenges for SaaS Data Protection and Management

API Access Management
Identify suspicious third-party apps and browser extensions that have access to sensitive Google Workspace / Suite data with automated daily security scans. You can easily block risky apps and extensions within the Google Workspace domain that are not allowed to be used in the company.
Data Shared Inside/Outside
Assess your company’s sensitive data from being shared with third-party users. Protect customers’ sensitive data (including PII) by deploying credit card number detection for Gmail. You have to be able to assess sensitive data sharing in or out of your Google Workspace domain.

Abnormal Data Migration or Download
Identify abnormal data transfer from a corporate G Suite account to a private one. Get notified when an employee downloads an abnormal number of files in bulk, or when an application is used to migrate sensitive data from a business account to a personal one.

Compliance
GDPR/CCPA. SOC2, ISO, HIPAA, FEDRAMP, etc compliance management becomes more sophisticated in the cloud due to globalization.

Human Error
SaaS data deletion accidentally or on-purpose becomes a big concern in the Work-from-Home era.
DLP
Detect brute force attacks and abnormal GeoIP login behavior. Create various security policies to automate your security flow on top of Security Alerts that can be easily integrated via API with 3rd-party providers such as Slack, ServiceNow, Splunk, etc.
AI-Driven Risk Assessment for Apps and Extensions
Database of 100,000+ Apps and Extensions discovered
SpinOne leverages 24/7 monitoring and a supervised Machine Learning approach to help Google Workspace / G Suite Admins, SecOps and SaaSOps teams manage OAuth access to mission-critical SaaS data and identify risky SaaS Apps and Browser Extensions. With G Suite security in mind, SpinOne helps automatically identify business risky apps and provides advanced incident response by implementing cloud-to-cloud backups, Google Workspace ransomware protection, risky third-party apps control, and sensitive data audit.

Identify Risk Scoring
Review permissions granted to Google Workspace data
Get a list of users who have access to a risky app or extension
Manage BlockList or AllowList
Automate your security flow using Custom Security Policies
Google Workspace DLP
Abnormal cloud user behaviour detection.Over 50% of data loss issues are the result of end-user mistakes. Losing data is stressful and financially challenging. Another case is ransomware viruses that may infect your computer and cloud storage. If you’re ever faced with a G Suite / Google Workspace accidental data deletion problem, you know there is no other solution to recover it than an automated backup.

Google Workspace Security Alerts
Integration with Email or Slack enables Domain Admins to get notified immediately about any type of security threats or data breach and SpinOne's incident response.
Google Workspace Security Policies
SpinOne leverages 24/7 monitoring and unique Machine Learning-powered expertise to protect G Suite organizations against data loss and data leak. With G Suite security in mind, SpinOne helps automatically identify business risky apps that have access to your critical G Suite data and provide advanced tools to protect business critical data with cloud to cloud backups, G Suite ransomware protection, risky third-party apps control, and sensitive data control.SpinOne leverages 24/7 monitoring and unique Machine Learning-powered expertise to protect G Suite organizations against data loss and data leak. With G Suite security in mind, SpinOne helps automatically identify business risky apps that have access to your critical G Suite data and provide advanced tools to protect business critical data with cloud to cloud backups, G Suite ransomware protection, risky third-party apps control, and sensitive data control.

Security Policies available:
Shared Items Control – It disables sharing of specific files to certain domains (including external) and specific users. Ownership can be changed on the specific files to the designated user. Notifications can also be sent for the specific event to G Suite Admin.
Ransomware Protection –A powerful custom policy that enables automatic actions to be taken when Ransomware encryption and synchronization events are detected. The actions include restoring encrypted files automatically, revoking access to the synchronizing application, and sending notifications for encryption events to G Suite Administrator.
Sensitive Data Detection (CCN) – Identifies and notifies the G Suite Administrator of messages containing sensitive information such as credit card (CCN).
Abnormal Data Transfer/Download Detection – Employees may want to migrate sensitive data from business accounts to a personal one without any permission or download an abnormal amount of data to a local device, both cases can be considered as a data breach incident. You can get notified when an employee downloads an abnormal number of files in bulk, or when an application is used to migrate sensitive data from a business account to a personal one.
Abnormal Login/Brute Force Attacks Detection – This policy notifies the G Suite Administrator when a brute force login attack has been detected.
Pricing
SaaS Backup & Disaster Recovery (DR)
- * Each license grants 30GB of storage
- Minimum contract size of $1,080
- 1x a Day Automated Backup
- Data Centers: AWS, GCP, Azure, BYOS
- Data Encryption
- Data Management & Recovery
- 24/7 Support
- Proactive Ransomware Monitoring & Response
- Misconfiguration Visibility & Management
- Risk Assessment for Apps & Extensions
- Blocklist/Allowlist Management
- Streamlined Approval Process
- Application Scoring
- Score History
- Security Policies
- Shared Data Audit
- PII Data Audit
- Incident Monitoring
- Integrations: Email, Slack, MS Teams
- Support Multiple SaaS Apps (Google Workspace, Office 365, Salesforce, Slack) & domains All-in-One Dashboard
SaaS Ransomware Detection & Response with SaaS Backup & DR
- * Each license grants 30GB of storage
- Minimum contract size of $1,080
- 1x a Day Automated Backup
- Data Centers: AWS, GCP, Azure, BYOS
- Data Encryption
- Data Management & Recovery
- 24/7 Support
- Proactive Ransomware Monitoring & Response
- Misconfiguration Visibility & Management
- Risk Assessment for Apps & Extensions
- Blocklist/Allowlist Management
- Streamlined Approval Process
- Application Scoring
- Score History
- Security Policies
- Shared Data Audit
- PII Data Audit
- Incident Monitoring
- Integrations: Email, Slack, MS Teams
- Support Multiple SaaS Apps (Google Workspace, Office 365, Salesforce, Slack) & domains All-in-One Dashboard
All-in-One SaaS Security
- * Each license grants 50GB of storage
- Minimum contract size of $1,080
- 1x/3x a Day Automated Backup
- Data Centers: AWS, GCP, Azure, BYOS
- Data Encryption
- Data Management & Recovery
- 24/7 Support
- Proactive Ransomware Monitoring & Response
- Misconfiguration Visibility & Management
- Risk Assessment for Apps & Extensions
- Blocklist/Allowlist Management
- Streamlined Approval Process
- Application Scoring
- Score History
- Security Policies
- Shared Data Audit
- PII Data Audit
- Incident Monitoring
- Integrations: Splunk, Platform API, OKTA, Email, Slack, MS Teams, Jira, ServiceNow, Platform API
- Support Multiple SaaS Apps (Google Workspace, Microsoft 365, Salesforce, Slack) & domains All-in-One Dashboard
Additional Options Sold Separately
A Backup Security Solution You Can Trust
2-Step Verification
Even if the bad guys have your password, this can help keep them out. You are safe with 2 step verification since it provides an extra layer of security for your sensitive data.
Disable login with Google
SpinOne protects Google users from account hijacking in cases where the original Google account has been compromised by cybercriminals.
OAuth 2.0
SpinOne utilizes the most secure Google API OAuth 2.0 to make communication between both Google and SpinOne services as secure as possible. We don't store your Google password on our servers thanks to OAuth 2.0.
Encryption
Top level encryption methods for transferring ("in-transit") and storing ("at-rest") your data are used. As an Amazon Advanced Technology Partner, we provide a layered approach to encryption, using 256-bit AES to protect data security during electronic transmission and storage.




