Get started with Dropbox Protect

Get visibility into file access, identify risky sharing, and take action to secure company content across Dropbox, Google Drive, and Microsoft 365. This quick start guide covers key workflows, including reviewing permissions, using reports, and applying policies to maintain least-privilege access over time.

8 minutes de lecture

What's Dropbox Protect?

Your team shares files across different tools like Dropbox, Google Drive, and Microsoft 365. Over time, links get reused, collaborators change, and access starts to grow beyond what’s needed.

You’re asked, “Who has access to this file?”

It’s not always easy to answer.

This is where Dropbox Protect helps.

Dropbox Protect is a data access governance solution that helps IT and security admins see and control who has access to sensitive content sensitive company data across Dropbox, Google Drive, and Microsoft 365. From one place, admins can identify risky sharing, such as public links and external collaborators, take remediation actions at scale, and maintain least-privilege access over time.

As organizations create and share more content across tools, access can quickly become difficult to track and control, leading to oversharing and outdated permissions.

With Dropbox Protect, admins can review file ownership, permissions, and sharing activity across these apps to manage access and reduce risk.

Dropbox Protect helps teams:

  • Get visibility into file permissions and sharing

  • Use automation to fix risky access (public links, external collaborators)

  • Generate reports to support reviews and compliance workflows

Note: Dropbox Protect shows file permissions and metadata, but it doesn’t automatically give admins access to file content. To view a file, you’ll need access in the connected app where it’s stored.

How to access Dropbox Protect

You can open Dropbox Protect at https://www.dropbox.com/protect/app/.

Access may look slightly different depending on your plan and whether you’re using Dropbox or Dash.

Need help setting up? See How to manage Dropbox Protect in the Help Center.

Manage apps and settings with the Admin console

The admin console is where admins manage organization-level settings and connected apps for Dropbox Protect.

To see files and sharing activity in Dropbox Protect, make sure at least one supported app (Dropbox, Google Drive, or Microsoft 365) is connected. Until an app is connected, the Items list and reports may be empty or show partial results.

Admins can access the admin console by clicking their initials or their avatar in the bottom-left corner of the screen.

How to access the Admin console

From there, admins can manage key settings through two main areas:

Dropbox Protect | Admin console | Apps

Apps

Connect and manage apps like Dropbox, Google Drive, and Microsoft 365. Admins can view connection status, see how apps are categorized, and remove apps if needed.

If your apps aren’t set up yet, you can find step-by-step instructions in this Help Center article.

Explore Dropbox Protect

Dropbox Protect is organized into few pages that help you review file sharing, automate governance policies, analyze reports, and track actions taken to manage access.

Explore the sections below to see how each one supports secure collaboration across your organization.

Dropbox Protect | Items page

Review how files are shared

The Items page lists files across connected apps like Dropbox, Google Drive, and Microsoft 365. Here you can see key details such as file owner, link type, and who has access.

Admins typically use this page to:

  • Review sharing permissions across files to understand who has access and what level of access they have

  • Identify files with public or company links to quickly spot content that may be shared more broadly than intended

  • Take actions such as removing links or updating access, either on individual items or in bulk to manage access at scale.

A simple way to use Dropbox Protect is to follow a repeatable workflow: review how files are shared, identify items that need attention, and take action to update access.

Find files with risky sharing

Once you’re familiar with the sections, you can start identifying files that may need attention.

You can use filters in the Items page to narrow your view and quickly find specific types of sharing. Preset filters help you spot common patterns at a glance, while more detailed filters let you refine your search further.

Admins can search for files with:

  • Public links: anyone with the link can access the file

  • Company-wide access: anyone in your organization with the link can access the file

  • Personal accounts: access granted to personal email addresses

  • External collaborators: people outside your organization who have been added to a file

  • Files owned outside the organization: content created externally and shared with your team.

After applying filters, you can open individual items to review details such as collaborators, link settings, and permissions to understand how access was granted.

Using these filters helps you identify common sharing patterns. These patterns can help surface risks such as internal oversharing, which you can further analyze using reports.

Export data and reports

Admins can export data and review reports to better understand how company files are shared across the organization.

Exporting Protect data to CSV helps admins better understand sharing permissions in detail before taking action. It also makes it easier to analyze sharing at scale. Admins can download item data from the dashboard and review it in spreadsheet tools, share insights with security or compliance teams, and document findings for audits or governance reviews.

Exporting data

When exporting from the Items list, admins can download either selected items or all items that match the current filters, even if not all results are visible on screen.

Exports may be limited in size. If an export fails or appears incomplete, narrow your filters and export in smaller batches.

CSV exports can include sensitive metadata, such as file names, owners, collaborators, and link types. Store and share exported data according to your organization’s security practices.

Admins can export data to:

  1. Analyze sharing patterns: A security admin exports a report to understand how files are shared across teams. They notice several files with company-wide links, which allow anyone in the organization with the link to access the content. This helps the admin identify areas where sharing may be broader than intended and review those files.

  2. Audit access: During a quarterly IT audit, an admin exports file-sharing data to verify who has access to sensitive documents. This helps confirm that only the correct teams or collaborators can access confidential files.

  3. Review risk exposure: A compliance team reviews exported data to identify files that have public links or external collaborators. These reports help them prioritize which items should be reviewed or secured first.

Understand Dropbox Protect reports

Dropbox Protect also includes built-in reports that help admins monitor file access and understand how content is shared across connected apps.

  • Overview report: Use this report to get a quick snapshot of how content is shared across connected apps and identify where to start your review (for example, items with public links, company-wide access, or outside access). It provides a high-level view of how items are owned and shared, helping admins spot broad access or unusual sharing patterns.

  • Stale access report: Use this report to find older content that hasn’t been updated in a long time but may still be widely shared. It highlights files that may still have active links or external access, helping admins review and clean up outdated sharing.

Reports Stale access

Example use case

A legal team preparing for a compliance review uses the Stale access report to find documents that haven’t been updated in several years but still have company or public links. The admin can then review and remove unnecessary access.

Use Reports to understand sharing and identify risks


From the Reports page, you can:

  • Quickly understand how files are shared across connected apps: this helps admins keep access accurate, reduce outdated sharing, and make it easier for teams to collaborate without confusion.

  • Save time with ready-made insights: instead of manually searching across tools and folders, admins can quickly review sharing data in one place and focus on what needs attention, reducing time spent on manual checks and follow-ups.

  • Focus on what needs attention first: reports highlight high-risk or outdated access, helping you understand where to focus your review.

Once you’ve identified items that need attention, you can take action directly from the item list to update sharing settings and secure content.

Take action to secure your content

From the item list, admins can take quick actions to reduce unnecessary access to company files.

Available actions include:

  • Add link

  • Remove link

  • Add collaborator

  • Remove collaborator

  • Stop sharing

  • Delete items

These actions can be applied to individual items or in bulk, making it easier to manage access across many files at once.

Note: Before taking action, review how access was granted. Some access may come from parent folders or shared drives and may need to be updated at a higher level. Bulk actions can’t be undone, and some items may fail if you don’t have permission to make changes.

Dropbox Protect | Items | Actions

Here are a few common ways admins use these actions in practice:

  • Remove public links: A marketing campaign brief was shared using a public link for an external agency. After the campaign ends, the admin removes the link to prevent continued public access.

  • Remove collaborators: A product team worked with an external contractor during development. When the contract ends, the admin removes the contractor’s access from project files.

  • Change sharing permissions: A finance report was shared with edit access for a leadership review. The admin changes permissions to view-only to prevent accidental edits.

  • Stop sharing: During employee offboarding, the admin removes all access to files previously shared with the departing employee.

Dropbox Protect works best as part of an ongoing review process, helping admins continuously review and improve access over time and enforce least-privilege access so the right people have the right access.

Best practices for admins

Use policies to automate access control: to reduce manual work and maintain least-privilege access over time, admins can use Policies to continuously monitor sharing and enforce rules. Policies can trigger alerts or automatically remediate risky access, such as removing public links or flagging external sharing. This helps ensure access stays aligned with your organization’s standards without relying only on periodic reviews.

Review public links regularly: as part of regular access reviews, admins should periodically check for files that use public links to ensure content isn’t shared more broadly than intended.

Investigate files with external collaborators: during routine security checks, admins should review files shared with external collaborators to confirm that outside access is still required.

Audit sharing before compliance reviews: before compliance or internal audits, admins should review how sensitive files are shared to confirm that only the appropriate teams or collaborators have access.

Export reports for periodic audits: as part of ongoing governance and compliance practices, admins can export Protect reports to analyze sharing patterns, document findings, and support periodic security reviews. Protect reports help admins spot overly broad access, understand sharing trends, and prioritize items that need review.


Now, when someone asks “Who has access to this file?”, you know where to look.
With Dropbox Protect, you can review how files are shared, identify risks, and take action to keep access accurate over time.

Want a more detailed walkthrough? See the full onboarding and setup guide for Dropbox Protect.

1/1