Best Practices for Securing Documents -- Security Today

Best Practices for Securing Documents

Exploring basic best practices for securing documents on your computer and smartphone

By Cole Armstrong
Dec 13, 2016

Whether you’re working on a desktop or mobile device, it’s important to keep document security in mind. Failing to take proper steps to safeguard your information can mean the difference between success and failure in protecting sensitive or confidential files. With this in mind, let’s review some basic best practices for securing documents on your computer and smartphone.

Desktop Document Security

One of the most fundamental security concerns in the desktop environment comes from opening documents received from unknown senders. When the origin of the document is unknown, it poses a security risk since a file may be infected with a virus or malware. This is true for documents received as email attachments or that come from outside sources via other methods such as an external drive or the cloud.

You should always use caution opening unknown documents—with and without VBA/Macros. With this in mind, here are a few general tips that can help you protect your desktop documents:

Don’t open unsolicited files or attachments. If you aren’t expecting someone to send you a document, don’t open it—even if you know the name that is identified as the sender. Phish scams or viruses can make it appear that the message has come from someone you know even if it really didn’t. Check with the person named as sender to confirm that they really sent you the file, and that it is secure.

Disable auto-download. If your email program offers the option to automatically download attachments, check your settings and turn this function off.

Choose a program with auto-save. Outside sources aren’t the only way that you can lose valuable information—it’s important to take smart document security measures from your own desktop as well. There are solutions which offer a built-in auto-save feature that allows you to edit without fear of losing your work.

Update your software. It’s important to respond to any prompts on your desktop computer that provide updates to your software. These software “patches” are often provided automatically by your operating system, and they can help ensure that hackers can’t take advantage of vulnerabilities in the program that would compromise your files or data.

Password protection. Some products on the market have a built-in feature that allows you to secure and encrypt your sensitive documents using passkeys for added protection. In addition to document password protection, the software offers advanced read and write permissions. This allows you to choose who can view and edit your documents. We’ll cover this topic in more depth in our next post.

Mobile Document Security

Mobile device users must take similar precautions to desktop users when opening unknown documents from email and apps. Here are some additional best practices for mobile document security:

The secure mobile office. Look for solutions which provide mobile security capabilities. This includes features with sharing restrictions that limit the sharing features for documents from within the app. This provides greater security for those files, since businesses can customize the app to secure employees’ usage and sharing.

App permissions. App permissions are another important part of a smartphone user’s document security best practices. There are products which include a permissions system for individual apps permissions on both Android and iOS. These systems give you a prompt before installing an app to be sure that you want to proceed, which can provide added security. For example, if you want to install an app from Google Play onto your Android phone, you’ll see a list of permissions that the app requires. On Android, apps must ask your permission to perform a wide range of functions, from accessing your GPS location data to reading USB storage. App permissions on iOS work a little differently in that when you install an app, you are enabling certain basic permissions like accessing the Internet. The app will request your permission to use additional features like contacts, calendars, or reminders.

Encryption. Encryption is an important safeguarding tool for mobile devices as well. Products that provide encryption on iOS and Android devices to password-protect your data are preferred.

Device security features. You can also take advantage of specific security features on the device itself, such as device lockout (which will lock the device if someone tries several times to unsuccessfully enter your password), and the ability to set a PIN code or unlock pattern on your device.

While these steps may seem basic to more advanced users, it’s important to keep these points in mind—and actually follow them—to ensure protection of your important files. Don’t grow complacent when it comes to securing your documents; an intentional approach toward data protection can go a long way toward safeguarding your valuable information.

Acre Security Confirms Kumar Sokka as CEO to Lead Next Phase of Growth
06/16/2025
Genetec Brings Powerful New Capabilities to Security Center SaaS
06/12/2025
Electronic Security Industry Applauds Passage of Oregon SB 959 to Combat Signal Jamming
06/12/2025
Security LeadHER 2025 Fosters Growth, Engagement and Community for Women in Security
06/12/2025
Allegion to Acquire ELATEC, Bolstering Electronics Portfolio with Leader in Reader and Credential Technology
06/12/2025
Hanwha Vision Holds Pricing Steady Amid Tariff Volatility
06/03/2025
ESX 2025 to Kick Off with Exclusive New Member Meetup
06/02/2025
ASIS International Unveils Program for GSX 2025
05/29/2025

Featured

Cloud Security Alliance Brings AI-Assisted Auditing to Cloud Computing

The Cloud Security Alliance (CSA), the world’s leading organization dedicated to defining standards, certifications, and best practices to help ensure a secure cloud computing environment, today introduced an innovative addition to its suite of Security, Trust, Assurance and Risk (STAR) Registry assessments with the launch of Valid-AI-ted, an AI-powered, automated validation system. The new tool provides an automated quality check of assurance information of STAR Level 1 self-assessments using state-of-the-art LLM technology. Read Now
- Cybersecurity
Report: Nearly 1 in 5 Healthcare Leaders Say Cyberattacks Have Impacted Patient Care

Omega Systems, a provider of managed IT and security services, today released new research that reveals the growing impact of cybersecurity challenges on leading healthcare organizations and patient safety. According to the 2025 Healthcare IT Landscape Report, 19% of healthcare leaders say a cyberattack has already disrupted patient care, and more than half (52%) believe a fatal cyber-related incident is inevitable within the next five years. Read Now
- Cybersecurity
AI Is Now the Leading Cybersecurity Concern for Security, IT Leaders

Arctic Wolf recently published findings from its State of Cybersecurity: 2025 Trends Report, offering insights from a global survey of more than 1,200 senior IT and cybersecurity decision-makers across 15 countries. Conducted by Sapio Research, the report captures the realities, risks, and readiness strategies shaping the modern security landscape. Read Now
- Cybersecurity
Analysis of AI Tools Shows 85 Percent Have Been Breached

AI tools are becoming essential to modern work, but their fast, unmonitored adoption is creating a new kind of security risk. Recent surveys reveal a clear trend – employees are rapidly adopting consumer-facing AI tools without employer approval, IT oversight, or any clear security policies. According to Cybernews Business Digital Index, nearly 90% of analyzed AI tools have been exposed to data breaches, putting businesses at severe risk. Read Now
- Cybersecurity
- Artificial Intelligence
Software Vulnerabilities Surged 61 Percent in 2024, According to New Report

Action1, a provider of autonomous endpoint management (AEM) solutions, today released its 2025 Software Vulnerability Ratings Report, revealing a 61% year-over-year surge in discovered software vulnerabilities and a 96% spike in exploited vulnerabilities throughout 2024, amid an increasingly aggressive threat landscape. Read Now
- Cybersecurity

Security Today eNews

Sign up today for essential industry news and product information that can help you stay afloat in the fast-paced world of security.

Email Address*Country*

Please type the letters/numbers you see above.

Webinars

Whitepapers

New Products

EasyGate SPT SPD

Security solutions do not have to be ordinary, let alone unattractive. Having renewed their best-selling speed gates, Cominfo has once again demonstrated their Art of Security philosophy in practice — and confirmed their position as an industry-leading manufacturers of premium speed gates and turnstiles.
Connect ONE®

Connect ONE’s powerful cloud-hosted management platform provides the means to tailor lockdowns and emergency mass notifications throughout a facility – while simultaneously alerting occupants to hazards or next steps, like evacuation.
PE80 Series by SARGENT / ED4000/PED5000 Series by Corbin Russwin

ASSA ABLOY, a global leader in access solutions, has announced the launch of two next generation exit devices from long-standing leaders in the premium exit device market: the PE80 Series by SARGENT and the PED4000/PED5000 Series by Corbin Russwin. These new exit devices boast industry-first features that are specifically designed to provide enhanced safety, security and convenience, setting new standards for exit solutions. The SARGENT PE80 and Corbin Russwin PED4000/PED5000 Series exit devices are engineered to meet the ever-evolving needs of modern buildings. Featuring the high strength, security and durability that ASSA ABLOY is known for, the new exit devices deliver several innovative, industry-first features in addition to elegant design finishes for every opening.