Is It Safe to Screen Share Sensitive Data? (Bank Details, Passwords & PII)
An honest answer: when screen sharing sensitive data is reasonable, when to never do it, the real risks (recordings, shoulder-surfing, scams, notifications, other tabs), and how to do it safely if you must.
It depends on what you're showing, who is on the other end, and how you've prepared. Sharing ordinary, non-sensitive material with people you trust is generally fine. Sharing bank details, passwords or full account numbers is risky — the other side can record the session, someone off-camera can read along, and one stray notification or wrong tab can reveal far more than you meant to. The one rule with no exceptions: never screen-share sensitive data with an unsolicited caller who claims to be 'support' or your bank. That's the single most common scam.
If you *do* need to show something sensitive, you can make it dramatically safer: share a single window, turn on Do Not Disturb, and blur the sensitive fields in the page before anyone can see them. This guide covers the real risks, when sharing is reasonable versus off-limits, and the safe way to do it.
The real risks of screen-sharing sensitive data
Screen sharing feels casual, but it exposes you to five distinct risks. Most leaks come from the ones people forget:
- Recordings. Zoom, Google Meet, Teams and Loom can all record a session. Once your screen is in a recording, you've lost control of it — it can be downloaded, re-shared, transcribed, or kept far longer than the call itself.
- Shoulder-surfing. You control your room; you don't control theirs. The person you're presenting to may have colleagues, family or a busy office reading along behind them.
- Scams and social engineering. Screen sharing is a favourite tool of 'refund', 'tech support' and 'bank fraud team' scammers, who talk victims into opening their banking, revealing balances, and reading out one-time passcodes.
- Notifications. A Slack DM preview, an email banner or a 2FA code toast can slide into frame mid-share and expose a private message or a live secret you never intended to show.
- Other tabs and windows. Sharing your whole screen — or the wrong tab — can reveal open documents, your bookmarks bar, a URL with a token in it, or a second account you're logged into.
When it's reasonable — and when to never do it
The question isn't really "is screen sharing safe?" — it's "is *this* screen share, with *these* people, safe?" The table below maps common situations to their main risk and a safer approach.
| Scenario | Main risk | Safer approach |
|---|---|---|
| A caller who contacted you claims to be 'tech support' or your bank and asks you to share your screen | Social-engineering scam — they capture logins, drain accounts, or install remote-access software | Never share. Hang up and call the company back on the number printed on your card or their official website. |
| Showing a colleague a bug in your banking, payroll or billing app | Account numbers, balances and names in frame; the call may be recorded | Share the one window, blur the account and balance fields, and use a test account if you have one. |
| A sales demo of a live dashboard holding real customer data | Customer PII exposed and possibly recorded and re-shared | Use demo or sandbox data, or blur customer names, emails and revenue before you present. |
| Signing into a site while someone is watching | Password or one-time code captured on the recording or by a shoulder-surfer | Pause sharing while you sign in; use a password manager's autofill so nothing is typed in the clear. |
| Presenting to a large webinar or a recorded training | Everything on screen is now on a widely distributed recording | Rehearse with dummy data, blur any real identifiers, and review the recording before you publish it. |
How to share sensitive data safely (if you must)
When you have a genuine reason to show sensitive information to someone you trust, the goal is to reveal only what's needed and nothing else. The most reliable way to hide the rest is to blur it in the page before you share, using BlurFirst. Because the blur is painted into the page as real pixels, it survives the recording and any screenshot of the shared feed.
- 1
Install and pin the extension
Add BlurFirst from the Chrome Web Store (it also runs on Edge, Brave, Vivaldi and Opera) and pin it to your toolbar.
- 2
Start blurring on the page
Open the page you'll present, then click the BlurFirst icon or press Ctrl/⌘ ⇧ Y. A small control bar appears.
- 3
Hide the sensitive fields
Click a single element — an account number, a balance, a name — to blur just that, or drag a box over a region. On Pro, click Scan to auto-detect and blur emails, phone numbers, card numbers, SSNs and API keys locally.
- 4
Lock down the environment
Turn on Do Not Disturb / Focus to mute notification banners, and choose to share a single window, not your whole desktop.
- 5
Keep the panic key ready and pause for passwords
If something unexpected appears, press Ctrl/⌘ ⇧ H to blur the whole page instantly. Stop sharing while you type any password or one-time code.
One more habit that pays off: if the call was recorded, review the recording before it's stored or shared. It's your last chance to catch a field that slipped into frame, and to confirm the recording's retention is short.