Definition
Browser-based DLP
Browser-based DLP enforces data-loss-prevention policies inside the web browser, via a managed extension on Chrome / Edge / Firefox, intercepting paste events, form submissions and outbound HTTP requests before they reach the destination service.
For generative AI usage, browser DLP is the most practical enforcement point because most LLM access happens through a browser tab (chat.openai.com, claude.ai, gemini.google.com, copilot.microsoft.com). Network-layer enforcement (CASB, SWG) sees encrypted HTTPS bodies as opaque blobs and cannot inspect prompt content without TLS interception, which most enterprises avoid.
Why it matters
- ✓Deployment: 2 minutes per user via Chrome Web Store, or mass-pushed via Google Workspace / Microsoft Intune / Active Directory GPO under an hour.
- ✓No TLS interception required — inspection happens before encryption.
- ✓Covers shadow AI by definition — any browser-accessible AI service is in scope.