Case Study: Flatfile protects PII and stays ISO compliant with Nightfall

Flatfile protects PII and maintains ISO compliance with Nightfall

Flatfile, a technology company that helps businesses simplify data imports, needed a stronger way to protect customer PII across internal SaaS tools while meeting strict compliance requirements like ISO 27001, HIPAA, PCI, SOC 2, and FedRAMP. Their infrastructure team found that built-in security tools were too noisy and unreliable, and they wanted a more robust solution than simple checkbox compliance.

Flatfile implemented Nightfall’s machine learning-based data security and DLP platform to scan critical cloud apps like Slack, GitHub, and Google Drive for sensitive data. With Nightfall, the team centralized rules, detections, and alerts in one dashboard, dramatically reduced false positives, and cut weekly Google DLP alerts from nearly 200 to only the issues that mattered. As a result, Flatfile improved PII protection, simplified compliance preparation, and gained confidence that customer data would not be exposed in their SaaS environment.

Flatfile

Robbie Trencheny

Infrastructure Security Team Lead