Our contract specifically addresses this by forbidding any of our staff from sharing, selling, distributing or exposing anything we see our interact with while working on your systems. Each employee has a unique log in and everything done while logged in is recorded to multiple places. So a simple audit would reveal the culprit. Also two factor authentication (2FA) will keep people from using another users log in credentials even if they knew the username and password. To keep this from happening in the first place we recommend restricting the most sensitive data to a very few select number of people limiting the exposure. With real-time monitoring and our Lake View service we could even catch people in the act hopefully stopping them in their tracks before any damage is done.