If one of your documents leaks either fully or partially, EchoMark provides tools to identify exactly which marked copy leaked. Investigating a leak is straightforward, and it can be initiated if you have the leaked PDF in its entirety, or even if the leaked information is a photo or screenshot of a portion of a page.
Provide the leak
From the Leaks tab in EchoMark, press "New Investigation."
In the What leaked? dialog that appears, choose Document if a PDF or attached PDF leaked, or the Email message if the body of an email leaked. If you choose Email message, you'll then need to give details about how it leaked. If it leaked as an image or .eml file, you can upload the image in the next step. If the leak came via text (e.g. a forwarded SMS or published news article), then you can past text.
Follow the instructions in the next step to either upload a file or paste text.
Identify the original
If you uploaded an image, then you'll need to select the original file or message from which the leak originated. Select the correct file and then press next. If you initiated a leak investigation from a document in the Files tab, then you'll skip this step.
Identify the page that was leaked
If you uploaded an image to investigate a PDF file, then you'll need to select the page that the leaked image is from. After choosing the correct page, press next.
Investigation report
EchoMark uses computer vision to identify the leak source and then presents you with a report summary that will identify the best match for this leak. For information on how to interpret the report, see our Leak Report article. If you don't get a match, see our troubleshooting guide.
Note that EchoMark can only identify which copy was leaked, not necessarily who leaked the document. The receiver named listed is the name of the copy (IE who it was intended for), but it's always possible that someone other than the intended recipient obtained the copy and leaked it.