Will this stop me installing software I need?

You can request any software approval through our helpdesk. Legitimate software is typically approved within 15 minutes during business hours. We just verify it's genuine first.

What if I need to use new software urgently?

Call us. For urgent, verified requests, we can approve software almost immediately. The brief delay is worth the protection against ransomware and malware.

Does this replace antivirus?

It works alongside antivirus, not instead of it. We use both for defence in depth. Antivirus catches known threats; application control blocks everything unknown. Together, they're far stronger than either alone.

Is this the same as Windows AppLocker?

Our solution is more sophisticated and easier to manage than AppLocker. It includes ringfencing, elevation control, and network access controls that AppLocker lacks - and it works across your entire estate from one dashboard.

Technology Explained

Application Control & Ringfencing

Traditional antivirus is like a bouncer with a list of known troublemakers. Application control flips this: instead of trying to spot bad software, it only allows approved software to run. If ransomware isn't on the approved list, it simply can't execute - no matter how new or clever it is.

Talk to an Expert Call 01584 517 234

What is it?

Application control (also called application whitelisting) works on a simple principle: only software you've approved can run on your computers. Everything else is blocked by default.

Ringfencing takes this further. It draws invisible boundaries around applications, controlling what they can do even after they're allowed to run. For example, Microsoft Word can create documents, but it shouldn't be launching PowerShell commands or encrypting your entire hard drive - ringfencing stops this abuse.

This approach defeats most ransomware attacks. Even if an employee clicks a malicious email attachment, the ransomware can't run because it's not on the approved list. And even if malware somehow hijacks a legitimate application, ringfencing limits the damage it can do.

Business Benefits

Ransomware Protection

Ransomware can't encrypt your files if it can't run in the first place. Blocked by default.

Zero-Day Defence

Works against brand-new threats that antivirus hasn't seen yet. If it's not approved, it doesn't run.

Reduced Attack Surface

Staff can't accidentally install unwanted software, browser toolbars, or malware disguised as legitimate programs.

Compliance Support

Demonstrates strong security controls for Cyber Essentials, ISO 27001, and client security questionnaires.

Risks Without It

Ransomware Vulnerability

Traditional antivirus detects roughly 60-70% of ransomware. The other 30-40% can encrypt your entire business in minutes.

Shadow IT

Staff installing unapproved software creates security gaps and support headaches - you don't know what's running on your systems.

Supply Chain Attacks

Malicious code hiding inside legitimate software updates can bypass traditional security. Ringfencing limits the blast radius.

Malware Persistence

Without application control, malware can hide in startup folders and run every time a computer boots - for months without detection.

How Fresh Tech Implements This

We deploy enterprise-grade application control across all managed devices. During onboarding, the system learns what software your business legitimately uses - building your unique whitelist automatically.

Once enabled, only approved applications can run. New software requests come to us, we verify it's legitimate, and approve it within minutes. Ringfencing policies prevent even approved applications from doing things they shouldn't.

This is included in our Cyber Security services and works alongside our other protection layers to create defence in depth.