DataFence directly enforces 5 Annex A controls and provides supporting evidence for 7 more — the data-leakage-prevention, web-filtering, logging, and monitoring controls of ISO/IEC 27001:2022, automated at the browser data-egress channel.
5
Annex A controls directly enforced
12
Controls mapped (A.5 & A.8)
24/7
Continuous monitoring & logging
ISO/IEC 27001:2022 is the world's most widely adopted information-security standard — and the 2022 revision put data egress front and center
93
Across four themes — Organizational, People, Physical, Technological
11
New controls — including Data leakage prevention & Web filtering
Browser
Uploads, cloud apps & AI tools are the fastest-growing egress path
$4.44M
Global average data breach (IBM, 2025)
Annex A defines 93 controls across four themes. DataFence directly enforces 5 and provides supporting evidence for 7 more — concentrated in the Organizational (A.5) and Technological (A.8) themes, at the browser data-egress channel.
Controls directly enforced
Controls mapped total
Organizational & Technological
Total Annex A controls
DataFence is the technical control at the browser egress channel.
Data leakage prevention
Blocks unauthorized transmission of sensitive data via browser uploads, web forms, fetch/XHR, and AI chat tools
Web filtering
Destination allow/block lists control access to unsanctioned external sites and applications
Monitoring activities
Real-time monitoring of allow / warn / block enforcement events across the egress channel
Logging
User-attributed activity logs and audit trails of every enforcement decision
Information transfer
Enforces policy on outbound information transfer to external destinations at the point of egress
DataFence contributes evidence and partial enforcement toward these controls.
Threat intelligence
Network gap reports surface crowdsourced, anonymized egress-risk trends
Classification of information
Content classification detects sensitive data types in transit
Access control
Destination-based allow/block acts as an egress access-control layer
Information security for use of cloud services
Shadow-IT discovery flags unsanctioned cloud services in use
Privacy and protection of PII
Prevents personally identifiable information from leaving via uploads and AI tools
Information security event reporting
Enforcement events feed the security event-reporting trail
Use of cryptography
Ensures data leaves only over HTTPS/TLS (transmission only — partial)
Control names and numbering per ISO/IEC 27001:2022 / ISO/IEC 27002:2022. DataFence provides direct or supporting technical controls for these Annex A areas at the browser data-egress channel; controls such as A.8.12 and A.8.23 also span endpoint, email, and network channels outside DataFence's scope. This mapping supports an ISO 27001 program — it is not an ISO 27001 certification and does not by itself constitute compliance.
The 2022 revision introduced controls written for exactly the risk DataFence closes — sensitive data leaving through the browser
Data Leakage Prevention
The flagship 2022 control
Web Filtering
Destination allow/block
Logging
User-attributed audit trail
Monitoring Activities
Real-time enforcement
A.8.12 Data leakage prevention is named, almost word for word, for what DataFence does — detect and block unauthorized transfer of sensitive data, integrate with classification, and alert on transfers to unapproved apps and file-sharing sites.
Egress: Blocked
Sensitive data stopped at uploads, forms & AI chatbots
Activity: Logged
Every action attributed to a user — supports A.8.15 & A.8.16
Evidence: Continuous
Audit-ready reports for internal and certification audits
DataFence plugs into an ISO 27001 program as the technical enforcement and evidence layer for the data-egress controls — the ones hardest to demonstrate with policy alone.
DataFence anchors to the browser data-egress channel of ISO/IEC 27001:2022 Annex A. Controls such as A.8.12 Data leakage prevention and A.8.23 Web filtering also span endpoint, email, and network channels that fall outside DataFence's scope — a complete ISMS combines DataFence with controls those channels require.
DataFence automates the data-leakage-prevention, web-filtering, logging, and monitoring controls of ISO/IEC 27001:2022 Annex A — directly enforcing 5 and supporting 7 more
ISO/IEC 27001:2022
Annex A · 93 controls
ISO 42001
AI Management System
GLBA Safeguards
16 CFR Part 314
CMMC
Defense supply chain
How DataFence maps to ISO/IEC 27001:2022 Annex A — and what it does and doesn't cover
Deploy DataFence and immediately automate the data-leakage-prevention, web-filtering, logging, and monitoring controls of ISO/IEC 27001:2022 Annex A
Deploy in hours
Instant egress protection
Audit ready