This document will guide you through the deployment of Miro's advanced security product, Enterprise Guard, by detailing best practices for both configuration and end-user enablement. If you have any questions relating to the contents of this guide, please contact your Miro account team.
How to use this guide
- Navigate from section to section using the outline on the left side of your screen
- Use the guide in conjunction with the feature documentation linked throughout
- Customize the templates provided to save time enabling your users
Guide outline
Why you need Enterprise Guard
Miro is the enterprise-ready online workspace for innovation that transforms how distributed teams of any size get work done.
We’ve seen a surge in the amount of strategic work being done in Miro, and with this growth there is even more content that needs protecting and governing.
Sensitive data is showing up where customers least expect it. Based on a sampling of 100 opt-in enterprise customers, we found that 62% of them had boards that contained sensitive data such as personally identifiable information, personal health information, and credit card information. This risk surface is only increasing as the number of boards for our enterprise customers is growing by 250% each year.
This content growth makes it even more challenging to try to manage risks strictly through existing traditional tools or relying on employees adhering to company policies.
Enterprise Guard is the advanced data security and governance add-on for Miro. Organizations can find and secure sensitive content, and manage content lifecycles, automatically and at-scale.
Introducing Enterprise Guard: a comprehensive security and governance solution for Miro
Recognizing these challenges, Miro introduces Enterprise Guard, an advanced security and governance add-on. Enterprise Guard offers a suite of features that empower organizations to effectively identify, classify, secure, and manage sensitive content across Miro boards. This solution is tailored to ensure compliance and robust data protection at scale.
With the integration of Enterprise Guard into Miro's enterprise ecosystem, organizations can now leverage a more robust, automated, and comprehensive security framework. This add-on is not just about protecting data—it’s about enabling enterprises to continue innovating and collaborating on Miro securely, without impeding business operations.
Enterprise Guard General Availability release: key features
-
Data Discovery: Enterprise Guard enables a proactive and thorough data discovery process, crucial for identifying sensitive data like credit card numbers, social security numbers, and other critical information scattered across various Miro boards. This proactive strategy is crucial in identifying and mitigating potential vulnerabilities, helping you prevent data breaches and ensure compliance.
-
eDiscovery: Enable secure preservation, tracking, and export of board data to support legal, compliance, and security requirements. The eDiscovery feature in Enterprise Guard helps organizations meet regulatory obligations through Legal Holds, Content Logs, and Board Export capabilities.
Legal Holds prevent permanent deletion of content relevant to investigations or legal matters by preserving all boards a user under hold interacts with—including all their versions. Content Logs provide detailed records of user activity, which can be exported and integrated into external tools for auditing or legal review. With eDiscovery APIs, Enterprise customers can also export board data at scale, ensuring that critical information is accessible for legal and compliance workflows.
-
Auto-classification: Set criteria for Miro to automatically classify your boards based on sensitive content found on boards.
-
Intelligent Guardrails: Enforce real-time security rules and restrict what users can do with a board, such as restricting board content replication and sharing capabilities at various levels (public, team, organization), based on the board’s manual or automated classification. This ensures sustained privacy and compliance without hindering business operations.
-
Trash Policy: Enterprise Guard’s Trash Policy offers enhanced control over the deletion and restoration of Miro boards. Organizations can set automatic deletion timelines (30, 60, 90, 180 days) for compliance with regulatory requirements, balancing data retention with enterprise risk minimization.
-
Retention: Ensure data protection and compliance by allowing administrators to define, edit, and delete policies tailored to their organization's needs. These policies play a crucial role in safeguarding Miro boards within the organization, allowing you to retain certain boards for a specified period of time. Retention ensures Miro boards do not get deleted accidentally or intentionally until the board is out of the retention period. By leveraging retention policies, organizations can ensure data protection, compliance, and the preservation of business-critical information.
-
Disposition: Enable automatic cleanup of boards by archiving and deleting them based on retention policies. Disposition ensures boards are retained only as long as needed and are automatically moved to Trash after a period of inactivity. From there, standard trash settings determine who can restore the boards and when they’ll be permanently deleted—supporting compliance, operational efficiency, and data security.
- Encryption Key Management(EKM): EKM grants centralized control over encryption keys, enabling organizations to monitor key-related activities and revoke access whenever necessary, thereby ensuring an additional layer of data security.