Secure Salesforce Data with Transaction Security Policy

Salesforce takes data security very seriously and thus provides tools and technology to make your data more secure.

Sensitive information such as banking details, medical records, social security numbers, and personal data is confidential, and you may not want your users to export such data. Using Transaction Security Policy, you can define events to monitor and take action when that event happens.

Salesforce allows you to monitor the user activity, intercept in real-time and take action based on specific events using Transaction Security Policies.

You have to buy Salesforce Shield or Salesforce Shield Event Monitoring add-on subscriptions to use Transaction Security.

Use Case

Kevin Carter asked Sara (Salesforce Administrator) to make sure that no one can export a report that contains more than 200 rows.

Enhance Transaction Security Policy

We have to perform the steps to enable and create Transaction Security Policies to block users from exporting a report that contains more than 200 rows:

Enable Transaction Security Policies
Set the Transaction Security policy by using Condition Builder

Step 1: Enable Transaction Security Policies

Navigate to Setup | Quick Find box, enter Transaction Security Policies.
Select Transaction Security Policies and click on Enable.

Step 2: Transaction Security Policy with Condition Builder

Navigate to the Transaction Security Policies page and click on New.
Select Condition Builder and click on Next

Define Conditions to trigger the Transaction Security Policy.
1. Select Event: Report Event.
2. Add Condition Logic (shown in below screenshot).
3. Click Next.

Define Action, when the Transaction Security Policy is triggered.
1. Select Action : Block
2. Block Message: Default Block Message
3. Select Notification: Email notification
4. Recipient: <User Name> (you want to notify).
5. Enter Name: Report Export Block
6. Status: Enabled
Click on Finish.