Russia’s First DSP Platform: Positive Technologies Launches PT Data Security

A New Class of Data-Centric Platforms

Development of PT Data Security began in March 2024, with the first prototype completed by fall of the same year. After pilot testing under the Early PT Birds program in 2025, the public launch took place in October 2025.

The platform automatically scans file repositories in read-only mode. Its classification module leverages AI to adapt to each organization’s specific data landscape. The emergence of this solution signals the formation of a new market segment in Russia’s cybersecurity industry — one centered on data governance rather than just endpoint or network defense.

In large IT ecosystems, PT Data Security can replace six to ten disparate tools, providing unified visibility and centralized policy control. For compliance teams, it accelerates data inventory and classification amid tightening regulations and rising fines.

Core of Data Inventory and Compliance

PT Data Security is particularly promising for sectors handling massive data flows — including media conglomerates, finance, retail, industry, and government. Integrations with DLP, SIEM, IRM, EDR, and other Positive Technologies products enable a comprehensive data governance and security framework. As Russian regulations evolve — such as new FSTEC directives and increased fines — demand for DSP-class platforms is expected to grow. PT Data Security can serve as the central “core” for personal data inventory, access control, and compliance reporting.

Export opportunities are realistic across the EAEU, BRICS, and allied jurisdictions where organizations seek alternatives to Western vendors. Positive Technologies plans to scale through local integration partners, adapting deployments to national privacy and data storage laws.

“The cybersecurity industry must take a new path that ensures unacceptable events never occur — not for individual companies, nor for entire sectors or nations. Lightweight sensors operating as part of a unified platform will make this possible by consolidating data for global analytics. Such consolidation relies on cost-efficient storage, accessible even to organizations with limited budgets.”

Alexey Lukatsky

Business Consultant for Information Security at Positive Technologies

Executive-Level Focus on Cybersecurity

In November 2024, Positive Technologies launched the Early PT Birds program, offering early access to pilot customers and detailed documentation on PT Data Security’s functionality. By October 2025, the platform was commercially released. Its primary capabilities include automated data inventory, AI-driven classification, and access control.

At the same time, a study titled “From DLP to DSP: The Transformation of Data Protection Approaches” by K2 Cybersecurity highlighted the market’s shift toward platform-based DSP solutions. According to the report, Russian organizations currently use between six and ten different data protection tools on average — often disconnected, creating numerous blind spots. Meanwhile, 71% of surveyed executives noted a sharp increase in leadership interest in cybersecurity over the past two years.

Regulatory pressure is also intensifying. Federal Law No. 420-FZ (effective May 30, 2025) introduced turnover fines for personal data leaks — a move seen as a major driver for data management reform. With 154 data breach incidents reported in the first half of 2025 alone, the demand for structured data governance and access control continues to rise.

Enterprise Pilots and Strategic Roadmap

PT Data Security aims to shift the focus of cybersecurity from isolated controls to unified management of the data lifecycle — answering the questions of what, where, who, and why.

Over the next 6–12 months, large enterprises are expected to launch pilot deployments, fine-tuning AI classifiers to industry-specific requirements and building libraries of ready-made policies. Within 12–24 months, PT plans to link DSP with compliance auditing for personal data and critical infrastructure, generate automated reports for regulators, and integrate with IAM/PAM systems — ultimately enabling large-scale rollout across the public sector.

The main challenges ahead include organizational change management, migration from fragmented legacy tools, and the shortage of data governance expertise. If implemented successfully, PT Data Security could become the de facto standard for data protection in Russia — and a strong export candidate for the EAEU and BRICS markets.