How We Use Data Detect to Secure the Heart of Salesforce

Key Takeaways

• Salesforce acts as “Customer Zero,” stress-testing its own tools within massive internal environments.
• Data Detect automated the discovery of sensitive data across billions of complex records.
• Internal feedback loops directly drove critical upgrades to product stability, UX, and roadmap features.

At Salesforce, Trust is our #1 value. But we don’t just talk the talk — we stress-test our own systems to the limit before they ever reach our employees’ hands. This is our “Customer Zero” philosophy: We are our toughest critic and our biggest internal user.

One of the most critical environments we manage internally is the GUS Org, the central hub that powers our internal engineering and operations. With approximately 1,400 objects and a massive 3.87 billion records, GUS is the ultimate proving ground for scale and security.

A key challenge in securing such a large org is identifying sensitive information within “free-text” fields. Unlike structured fields specifically designated for email or address data, free-text areas contain unpredictable inputs that are incredibly resource-intensive to manually review at our scale.

Recently, we implemented Shield: Data Detect within our GUS org to see if we could bring automated, near-instantaneous discovery to surface deep insights. The tl; dr is we achieved that objective. Below is how we did it.

The Challenge: Securing GUS at Scale

The GUS org is the heart of Salesforce’s internal operations, managing everything from bug tracking to feature requests. To complement our existing frameworks, our goal was to automate and accelerate how we pinpoint sensitive data exposure across billions of records. While our traditional auditing methods ensured compliance, doing this at our current massive scale required a next-generation automated solution.

The mission was clear: Data Detect needed to maintain stability under massive scale, and the GUS team needed to pinpoint and classify sensitive data across their entire footprint.

The Results: Finding the Needle in the Haystack

In large-scale environments, the sheer volume of data can create technical hurdles. By using GUS as our “Customer Zero” environment, we were able to further refine our data detection technology. This automated discovery provides a crucial layer of preventative security, ensuring data hygiene and maintaining our high compliance standards.

The best part? It took only a few minutes to go from step zero to the first scan.

How Our Internal Use Drives Product Excellence

The “Customer Zero” feedback loop ensures that Shield: Data Detect is continuously tested and improved in our most complex environments, resulting in a more reliable product for our customers. For instance, our experience in the GUS org has already led to several key improvements:

• Architectural Stability: We focused on enhancing the stability and performance of the tool during high-volume scans
• UX Reboot: We’re overhauling the Policy Creation workflow to eliminate response-time lag.
• Redaction Insights: The GUS team’s need to mask identified fields is directly influencing our future roadmap for integrated redaction and encryption.

The Bottom Line

By leveraging Data Detect as “Customer Zero,” we’ve strengthened the security of our most vital internal systems while improving the product for our customers. We continue to innovate by using our own technology to solve the toughest data security problems, ensuring Salesforce remains the most trusted enterprise platform.

See a demo of Data Detect to learn how it can improve the security of your org.