Maintaining a secure digital presence and reputation does not stop at tracking one’s digital footprint. With Digital Executive Protection, corma detects cyber threats close to real-time to protect key decision-makers from having their sensitive information used against them. We will find your personal information on the web before the bad guys do

Our experts find digital information which has been published about you on the Internet - before others do!


Company directors, board members, and key decision-makers are often the prime targets of digital attacks and identity theft, with perpetrators aiming to obtain sensitive information or financial data about them. 

Unfortunately, those seeking to exploit sensitive data often hold the upper hand over their targets as they can narrow their focus to a specific area, while companies are burdened with the responsibility of securing all their information, leaving potential vulnerabilities for attackers to exploit until they find them. Such data can be used to undermine an institution’s operation and security.

Plus, executives and key decision-makers have extensive access rights within their IT environment, so gaining access to their data is almost a surefire way to compromise a company.

A typical example is phishing attacks, where perpetrators misuse executives’ personally identifiable information (PII) to make their phishing messages appear trustworthy. A single vulnerability is enough to cause a chain reaction of data leaks.

As such, executives need a high level of protection from cyber assaults to safeguard their image and, in effect, the company’s reputation. The more important a company is, the more risk assessment, vulnerability management, and adequate security measures become mandatory.


corma offers Digital Executive Protection to identify and mitigate any cyber risk before an attack occurs. Often done as a recurring service after a Digital Footprint Assessment, Digital Executive Protection involves:

online monitoring of risk profiles

  • threat assessment
  • integrity protection

You will also receive a monthly risk and threat analysis, which includes the following:

Exposed Identities
Our team checks for personal information that uniquely identifies a person, such as names, social security numbers, ID cards, driver’s licenses, or birth certificates. Exposed identities are severe threats to an individual’s privacy and security and, at worst, can be used for identity theft, fraud, or physical attacks.

Personally Exposed Information (PEI)
PEI includes any personal information disclosed to the public, such as one’s identity or even financial and medical data. Professional secrets or private information meant to be kept confidential to maintain integrity but have been divulged publicly also count as PEI.

Digital Exposure
Digital exposure refers to the online presence of protected individuals across various media channels, such as social media, news publications, and trade journals. Our Digital Executive Protection focuses on recognizing and averting potential scandals or reputational risks.

Online Identities
Our investigative team locates personal data handled by data brokers as part of our risk analysis and threat protection.

Impersonation Attempts and Fraud
These cyberattacks aim to inspire false trust and deceive people, making them a threat to one’s identity. Our experts identify phishing and other fraudulent scams that use personal information to mitigate these attacks before they cause damage.

Social Unrest Activity
Our team looks for any mention of the protectee on politically oriented sites, activist forums, violent groups, and conspiracy theories that may endanger their protection.

Dark Web or Dark Net Activities
Despite being hidden through encryption and anonymization, dark web activities remain accessible to our investigators, who conduct detailed investigations of marketplaces or forums for criminal activities. Our incident management also includes precise detection of any mention of the protected person on the dark net.


Based on the individual’s digital footprint, our team searches various data sources for potential risks. This includes:

  • search engines
  • social media
  • files shares, source codes, and mobile apps
  • chat apps
  • forums, news portals, blogs, and reviews
  • surface, deep, and dark web

Our team then performs a risk assessment using corma’s state-of-the-art intrusion detection system that uncovers emerging risks. It offers flash alerts that notify our expert investigative team of any hits, allowing them to monitor potential risks and react in near-real time. Other features include:

  • threat research and tooling
  • strategic threat analysis
  • collection of relevant information
  • continuous monitoring of the sources

corma provides a comprehensive monthly report containing risk and threat analysis, with the option to provide recommendations on eliminating risks.


  • Management boards and managing directors
  • Business leaders and executives
  • Exposed persons
  • VIPs
  • Actors
  • Professional athletes
  • Politicians
  • Public figures
  • High-net-worth individuals (HNWI)
  • Family offices and security management
  • Corporate security departments and group security
  • Bodyguards
  • Private individuals with an increased need for protection


  • Safeguard your company executives’ reputation by reducing the risk of sensitive information being compromised or misused.
  • Mitigate potential financial losses associated with data breaches, identity theft, or other cyber attacks targeting key decision-makers.
  • Preserve confidential information, such as trade secrets, financial records, or strategic plans.
  • Instill trust and confidence in clients, partners, and stakeholders by demonstrating a commitment to security.
  • Prevent potential disruptions — such as business email compromise, ransomware attacks, or data leaks — to your company’s operations, as they can negatively impact productivity and continuity.
corma- A man in a suit is conducting a digital footprint assessment by touching a padlock icon on a computer screen.


corma has over 20 years of experience in the private eye and investigative sector, with experts consisting of former police detectives, certified private investigators, fraud examiners, and intelligence analysts.

Coupled with state-of-the-art technologies and access to premium software, corma offers comprehensive Digital Executive Protection for multinational corporations and their corporate security and compliance departments, including:

  • Risk analysis and risk assessment
  • Threat management
  • Close to real-time attack detection
  • Incident management and incident response

At corma, you can enjoy peace of mind knowing you are taking proactive steps to detect cyber threats and ensure your protection on the internet.


Our monitoring service is based on a systematic process to identify, assess, and monitor security gaps. Some of the questions our team seeks to answer include:

  • Which critical issues affect the company, and are they being discussed?
  • Are there any security-related issues in the company’s, the competitor’s, or the industry’s environment?
  • Are there discussions or calls directed against the company or the protected person?
  • Are data leaks emerging?
  • Is private information such as the address and contact details of the protected person in circulation?

Though no two situations are the same and the methodology for protecting against cyber attacks varies from case to case, our team generally conducts risk monitoring through the following steps:

Step 1:
Our team captures the known digital footprint of the protected person. We use their personal data and relevant keywords for monitoring.

Step 2:
corma sets up a monitoring profile for the protected person using the captured data in two independent and industry-leading systems.

Step 3:
We conduct a fully automated monitoring and analysis of identified risks to help us understand and assess their extent and probability of future occurrence.

Step 4:
Our system is alerted almost instantaneously every time a threat is detected. corma’s experts manually examine each threat so thet can address the most urgent ones first.

Step 5:
corma produces a monthly summary report and risk assessment, which may also contain recommendations on eliminating risks as per client request.

corma- A businessman conducting a digital footprint assessment, holding a padlock symbol in his hands.

Unsure of the right solution for your needs? CORMA IS HERE TO HELP

corma- A man giving a presentation in front of a screen.

Meet the expert!

Jörn Weber is an investigator, trainer, and managing director of corma GmbH. 

Before joining the company, he worked as a police officer in NRW for 20 years, ending his service as a chief detective. 

Now, he and his team support security departments and brand protection officers of national and international clients using highly professional internet research and OSINT tools to ensure successful investigations.


IT security involves the digital protection of computer systems, information, and networks against unwanted third-party access. Some standard measures include anti-virus software, firewalls, encryption technologies, and security protocols.

Digital Executive Protection is part of IT security. Its primary goal is to protect managers and other essential people by reducing or eliminating potential digital risks that may threaten their integrity. It uses various procedures and technologies to conduct risk and hazard analyses and implement comprehensive threat management. Through this, executives’ digital identities, personal information, and online activities are secured. In the event of an attack detection, an incident response strategy is also developed.

Thus, Digital Executive Protection goes far beyond installing IT security systems. It also includes reputation management, crisis communication, and physical protection measures.

No. Although our service mainly relates to the cybersecurity of executives and other high-ranking individuals, we offer Digital Executive Protection for anyone with a legitimate interest in threat assessment or risk management. We also ensure tailor-made solutions for each client.

Digital Executive Protection is simply the correct technical term for our services in the area of ​​risk and threat analysis and threat management.

Phishing attacks are emails that look like regular messages from a trusted sender. They are designed to trick the recipient into clicking a link, entering login information, or opening an attachment, which then installs malware on the computer. However, phishing messages can also be sent on social media platforms, messaging apps, forums, or SMS.

In contrast, social engineering describes manipulation techniques to fool people. They are tricked into giving out information or doing certain things. Examples include fake calls and ratings, as well as fake websites and social media profiles.

Both social engineering and phishing play a significant role in Digital Executive Protection. The perpetrators exploit human weaknesses, such as curiosity and carelessness, to obtain confidential data from their targets or inject malware into a system. This tactic can be highly effective as it is often easier for attackers to manipulate people than circumvent complex IT security measures.

corma’s Digital Executive Protection proactively detects these digital attacks to help clients implement security measures promptly and minimize the risk of unwanted access to their data.

Digital protection always goes hand-in-hand with a certain degree of personal responsibility. The rules that are now part of every cybersecurity etiquette also apply here:

Always use strong passwords with a combination of uppercase and lowercase letters, numbers, and special characters. Avoid easily derivable passwords with a personal reference, such as your partner’s name or date of birth.
Enable two-factor authentication to receive a code or message on your mobile phone when logging in. This provides your login data with a second level of protection.
Only open links and attachments if you trust the sender’s name, email, and content. It is best to delete suspicious messages immediately, as these could be phishing attacks designed to steal your data or infect your computer.
Use a virtual private network (VPN) service when accessing public WiFi networks. This ensures your data is encrypted and cannot be intercepted by third parties.
Protect your privacy and keep sensitive information out of the public eye. Check your privacy settings on websites and social media profiles.
Avoid storing data on your computer or mobile phone, especially if it is not encrypted. This particularly applies to bank information, passwords, and identification data.
Install antivirus software and keep it up to date.

Unfortunately, these measures are not always enough. Sometimes, private information gets onto the internet without our doing, such as in the event of a data leak or through third parties. Nevertheless, it is always advisable to question your surfing behavior and be more cautious on the internet.

More and more companies recognize the threats from social engineering, phishing, and other fraudulent practices, pushing them to practice cybersecurity and vulnerability management among their employees. One of the things they routinely do is “test” their employees by sending fake messages and emails. The more employees who fail the test, the more urgent it is to receive appropriate safety instructions. This can take many forms, such as: the creation of mandatory safety guidelines IT security system installation education and training on password management, safe surfing, and recognizing phishing emails recurring reminders Digital protection for managers is also associated with a role model effect. Set a good example by complying with the company’s security guidelines, and the rest of the team will follow.


We have been commissioning corma GmbH for over ten years. Confidentiality has always been maintained, the technical competence is convincing, and the cooperation works perfectly at all times. corma GmbH regularly provides us with highly specialized data evaluations that can only be generated with the help of profound professional knowledge and technical expertise. In addition, we use corma for ad-hoc orders, which are always handled with great sensitivity. We highly appreciate the professionalism of this service and can recommend corma as a trustworthy partner.

corma- A black, red, and white logo with a square in the middle.


In-Depth Articles on Related Topics