What you control
Control the managed browser path: routing mode, work domains, allowed egress region, domain/category policy, traffic limits, active sessions, and session history.
BYOD
Work browsing on personal devices, without device takeover
People use personal laptops for work, but a device-wide VPN can be intrusive, hard to justify, and risky for calls, banking, personal browsing, and local tools.
What stays outside
Personal apps, calls, banking, local tools, non-browser traffic, and unmanaged browser profiles stay outside BusinessProxy. On unmanaged devices, users can still use other browsers outside this product boundary.
Proof points
Backed by implementation
- No OS-level agent and no device-wide VPN.
- Work browsing can be scoped to the managed browser profile. Current beta uses Chrome/Chromium.
- HTTPS page content is not decrypted on the browser-proxy path.
- Admins can revoke active work sessions without touching the personal machine.
- Current Chrome/Chromium beta deployment can be enforced with Chrome Enterprise or MDM.
FAQ
Will BusinessProxy see my personal browsing?
BusinessProxy manages the browser path configured for work. Personal apps, non-browser traffic, and unmanaged browser profiles are outside the product boundary. On the managed browser-proxy path, HTTPS page content is not decrypted.
Can users bypass the managed path?
On unmanaged devices, yes: users can use other browsers or unmanaged Chrome profiles outside BusinessProxy. For enforced BYOD deployments, use Chrome Enterprise or MDM to require the extension and lock managed settings.
Does this replace endpoint management?
No. BusinessProxy is for managed browser access. It does not replace MDM, EDR, device compliance, or endpoint control.
Related use cases