Protect your whole team from the data that makes them targets.
Withheld for Teams removes your employees from data brokers in seven regions — automatically, continuously, and without exposing a single piece of personal information to the admin who buys it.
What ends up on a broker page becomes a weapon.
Most cyber attacks against staff start with public profile data: home address, family names, side businesses. Brokers package and sell it. Removing it is the cheapest and most direct hardening you can do.
- ·CEO social-engineering
- ·Spear-phishing the C-suite
- ·Doxxing of family members
- ·Stalking risk to relocated staff
- ·BEC fraud built from public profiles
- ·Tailored AI scams using broker data
- ·Discovery in M&A and litigation
- ·Compliance liability under GDPR
Set up in a morning. Runs on its own.
The admin work is the first hour. After that the engine takes over — requests go out, replies come back, monitoring continues, and the dashboard shows aggregate progress without ever surfacing any individual's data.
- Step 01
Set up your org
One admin creates the workspace. Choose whitelabel and your brand colour, or keep it under Withheld.
- Step 02
Add employees
Bulk CSV import or SAML/SSO sync. Each employee gets their own private dashboard and signs their own one-time mandate.
- Step 03
Removals run
We process each person across all seven regions. The admin only sees aggregate progress — never the employee's PII.
- Step 04
Audit-ready evidence
PDF evidence reports per employee on demand. Aggregated SOC-2-ready exports for compliance reviews.
Admins see progress. Never people.
Even though your company pays the invoice, each employee remains the legal owner of their own data. The admin dashboard shows totals and progress bars — what got removed, what is waiting, what stayed stubborn. It never shows the names, addresses, emails or broker findings of any single employee. That separation is enforced at the database level with row-level security, not a UI toggle.
HR / IT teams love this because it means deploying us creates zero new privacy liability inside the company.
Honest answers, in plain English.
- What does the admin see vs not see?
Admins see counts, status totals, and per-employee progress percentages — never names, emails, addresses, or broker findings. Each employee owns their own data. This is enforced at the database with row-level security and shown clearly in the privacy notice we hand new staff.
- How are mandates signed for a team?
Each employee signs their own personal Letter of Authorization the first time they log in — that is what makes the agency relationship legal under GDPR/CCPA. The company is the buyer, not the principal. We never accept a "the company signs for everyone" workaround because it would not stand up.
- Can we whitelabel this for an internal portal?
Yes. We host a subdomain under your brand, swap the logo and accent colour, and route the emails to a sender you control. Available from the Team plan upwards.
- How is pricing structured?
Per seat, billed annually, with a separate tier for executive-grade coverage (more aggressive recheck cadence, faster legal escalation for stubborn brokers). Volume discount kicks in at 25 seats.
Walk us through your team. We'll scope it in 20 minutes.
Reach out with the size and shape of your team. We'll send you a private demo, a sample compliance pack, and a per-seat quote — no card needed.
- · Demo of the admin & employee dashboards
- · Sample SOC-2 evidence pack
- · Per-seat quote, volume discount over 25