Secure Islands
Last updated: May 10, 2026
Israeli data protection startup acquired by Microsoft in 2015. Developed IQProtector, an automated information protection platform that classified and encrypted sensitive data at creation, preventing data spillage and enabling proper access control from the moment of generation.
Visit WebsiteCompany Overview
Secure Islands developed IQProtector, an automated information protection platform that fundamentally shifted data classification from reactive (detecting leaks after disclosure) to proactive (protecting data at creation). The platform analyzed document and email content, automatically detecting sensitive information and applying persistent encryption, rights management labels, and classification tags based on configurable policies and content analysis. Unlike traditional data loss prevention (DLP) systems that monitor and block after the fact, Secure Islands' born-protected paradigm ensured classified and sensitive information was encrypted and access-controlled from the moment of generation, preventing data spillage at the source rather than attempting interception downstream.
Commercially, Secure Islands competed in a fragmented but strategically important data classification and persistent rights management market. Direct competitors included Boldon James, Titus (acquired by BlackBerry), and Varonis, each offering data governance and protection capabilities but with different architectures and policy models. Founded in 2011 in Rishon LeZion, Israel by Aki Eldar and experienced Israeli data security professionals, the company rapidly gained enterprise traction. By 2015, Secure Islands had raised approximately $11 million in venture funding from notable investors including Marius Nacht, co-founder of Check Point Software, and other strategic angel investors. The backing validated the technical approach and market demand for automated, born-protected data classification.
Microsoft's acquisition of Secure Islands in November 2015 represented a significant validation of the technology and business model. The company integrated Secure Islands' classification and persistent encryption technology into Azure Information Protection (AIP), which evolved into Microsoft Purview Information Protection. This integration positioned the born-protected classification paradigm at the center of Microsoft's enterprise information security strategy, eventually reaching millions of Office 365, Azure, and enterprise customer deployments. The acquisition demonstrated that the core technology addressed a fundamental commercial need across regulated industries, enterprises, and government organizations managing sensitive information at scale.
From a defense and national security perspective, automatic data classification and born-protected encryption directly address critical military and intelligence requirements. Military classified information, defense contractors' controlled unclassified information (CUI), and intelligence community data all demand rigorous handling controls from the moment of creation. Secure Islands' technology ensures that classified data is properly labeled with security markings, encrypted with appropriate classification-level protections, and subject to need-to-know access controls immediately upon generation. This prevents common spillage vectors such as accidental sharing to unsecured systems, improper archiving, or forwarding to unauthorized recipients. Defense organizations face constant pressure to prevent classified data exfiltration and unauthorized disclosure; a system that ensures proper handling from creation addresses this risk at the source rather than relying on user behavior or downstream monitoring.
Dual-Use Assessment
Automatic data classification and born-protected encryption directly address military classified information handling, CUI protection, and defense data governance. The technology prevents spillage of classified and sensitive information by enforcing proper encryption and access controls from creation, not detection. Defense and intelligence organizations require classified information to be automatically marked, encrypted, and access-restricted according to classification level and need-to-know principles. Secure Islands' approach aligns with defense information security best practices where the cost of mishandling classified data is extremely high. The dual-use relevance is substantial: the same technology enabling enterprise compliance also directly serves defense data compartmentalization, secure document handling, and preventing unauthorized disclosure in military and intelligence environments.
Strategic Fit Assessment
Secure Islands is not currently strategically relevant as a standalone venture—acquired by Microsoft in November 2015. However, the company represents a validated exit case study for born-protected data classification technology. The acquisition by a major cloud platform provider confirmed market demand and defensibility of the approach. for strategic readers evaluating similar data protection startups or emerging competitors attempting to address defense-specific classification and persistent rights management, Secure Islands demonstrates that automatic data classification at creation is strategically valuable, justifying both venture funding and acquisition pricing.
Strategic Value to U.S.-Israel Alliance
Automatic data classification at point of creation is the gold standard for military and defense information security. The technology directly addresses the most critical failure mode in classified information handling: preventing spillage and unauthorized disclosure by ensuring data is properly marked, encrypted, and access-controlled from moment of generation. This shifts security from a detection paradigm (catching bad actors downstream) to a protection paradigm (making spillage technically infeasible). For defense organizations managing classified intelligence, military records, and sensitive operational data, this capability is strategically invaluable. The integration into Microsoft Purview and Azure demonstrates adoption at enterprise scale; defense adoption through similar mechanisms would provide significant operational security advantages.
Key Technologies
- Automatic data classification at point of creation
- Persistent encryption and rights management for documents
- Content-aware and context-aware data labeling
- Integration with email, file systems, and cloud storage
- Policy-driven data protection enforcement
- Data sensitivity detection using NLP and pattern matching
Use Cases & Applications
- Enterprise automatic data classification and labeling
- Persistent document encryption and rights management
- Data loss prevention through born-protected approach
- Regulatory compliance for sensitive data handling
- Military classified data auto-classification and protection (dual-use)
- Defense CUI handling and data spillage prevention (dual-use)
Sources and verification
This profile is based on public-source research, Claw & Talon curation, and editorial judgment. Inclusion does not imply endorsement, partnership, investment, or a recommendation to transact. Readers should still confirm current status, customers, funding, and product claims before relying on this profile.
Public sources
The links below are visible public references used for source discipline around company identity, status, funding, customer, acquisition, public-company, or other material claims where available.
- Official website Primary public reference for company identity, positioning, and current web presence.
- Profile update timestamp Last updated in the Claw & Talon database on May 10, 2026.
Investor Lens
What this entry is
Acquired asset
Why it may matter
Secure Islands may matter as a Cybersecurity entry with not currently an investable standalone company for Israeli technology research.
How an independent investor should read this
Not currently an investable standalone company. Read this profile as a starting point for independent verification, not as a recommendation or suitability assessment.
Evidence to verify
- Verify current status
- Verify technical claims
- Verify regulatory/export-control issues
Main investor questions
- Is this entry a benchmark, buyer, ecosystem node, acquired asset, or strategic reference rather than a live startup opportunity?
- What does this reference clarify about buyers, sector structure, public-market context, or strategic demand?
- Does the dual-use claim map to actual commercial and government/defense/resilience buyer evidence?
- What evidence would change the thesis or show that the profile is stale?
What not to infer
- Inclusion does not imply endorsement.
- Inclusion does not imply allocation availability or current fundraising.
- Scores do not indicate investment suitability or expected returns.
- Strategic importance does not automatically imply venture return potential.
Diligence questions
- What evidence verifies Secure Islands's current customer traction, deployment status, and revenue concentration?
- Which technical claims are independently demonstrable today, and which remain roadmap or pilot-stage assertions?
- Where does the product create real defense, intelligence, critical-infrastructure, or emergency-response value beyond ordinary commercial adoption?
- How does the platform integrate into existing SOC, cloud, identity, or compliance workflows without adding operational burden?
- Is the company a live venture opportunity, a mature strategic reference, an acquired asset, or primarily a market-mapping entry?
Related sector
See the Cybersecurity sector page for market context, related subcategories, and other Israeli companies in this part of the database.
Related companies
Need a diligence readout?
Use the profile and related checklists as a starting point. If the decision needs more context, request a company screen, founder-call prep, diligence memo, or sector readout.