Skip to content
BlurFirst

The Secure Screen Sharing Checklist (Every Step Before You Present)

8 min read

A definitive pre-share checklist and screen sharing best practices — share one window, silence notifications, clean up tabs, blur the sensitive fields in the page, and review any recording before publishing.

A secure screen share comes down to controlling two things: your environment (what surrounds your content) and your content (the sensitive data inside the thing you're presenting). The checklist below covers both — share a single window, silence notifications, clean up your tabs, then blur the sensitive fields in the page itself and keep a panic hotkey ready. Run it before every call and you close the two ways screen shares leak: something in the background, and something on the page.

Most checklists stop at the environment and never mention the content inside the tab you meant to share. That's the gap this one closes.

The pre-share checklist

  1. Share a single window or tab — never your entire screen. In Zoom, Google Meet or Microsoft Teams, pick the specific window or tab in the share picker. This keeps every other app, window and your desktop out of the feed instantly.
  2. Turn on Do Not Disturb / Focus. macOS Focus or Windows Focus Assist suppress notification banners, so a Slack DM or an email preview can't slide into frame mid-share.
  3. Close unrelated tabs and hide the bookmarks bar. Bookmarks quietly reveal client names, internal tools and unreleased projects. Press Ctrl/⌘ ⇧ B to hide the bar, and close any tab you won't use.
  4. Use a clean browser profile for demos. A profile with nothing personal logged in keeps autofill, saved passwords and the wrong account out of view — and out of screenshots.
  5. Blur the sensitive fields in the page. Salary columns, account numbers, customer names, API keys and DMs live *inside* the tab you're intentionally sharing — the one thing sharing a single window can't hide. Blur them in the page (see the steps below).
  6. Keep the panic hotkey ready. Have a one-key way to blur everything the instant something unexpected appears — a notification, the wrong record, an incoming message.
  7. Review any recording before you publish it. Watch it back at full size. A frame that flashed a token or a name for a single second is enough to leak it.
  8. Rotate any secret that appeared unblurred in a frame. If an API key, password or token was visible even briefly, treat it as compromised and rotate it. This is the step people skip — and the one that turns a slip into an incident.

How to blur the sensitive fields in the page

Step 5 is the part no conferencing setting handles for you, so here's the whole flow with BlurFirst. It runs in Chrome, Edge, Brave, Vivaldi and Opera, and the blur is painted into the page as real pixels so it survives recording:

  1. 1

    Install and pin the extension

    Add BlurFirst from the Chrome Web Store and pin it to your toolbar so it's one click away before a call.

  2. 2

    Start blurring on the page

    Open the page you'll present and press Ctrl/⌘ ⇧ Y (or click the icon). A small control bar appears.

  3. 3

    Cover what's sensitive

    Drag a box over a region, click a single element to blur just that field, or run Scan (Pro) to auto-detect PII — emails, phones, credit cards, SSNs and API keys — locally in the page.

  4. 4

    Save a per-site profile

    For pages you present often, let BlurFirst remember your blurs (Pro). It stores a CSS selector, never the content, and auto-applies the same blurs next visit.

  5. 5

    Set the panic key in muscle memory

    Ctrl/⌘ ⇧ H blurs the whole page instantly. Practise it once so it's automatic if something appears mid-call.

Risk to mitigation, at a glance

Every item on the checklist maps to a specific way screen shares go wrong. Here's the short version you can scan before a call:

RiskHow it leaksMitigation
A notification pops into frameA Slack or email banner appears mid-shareDo Not Disturb / Focus before you start
Other tabs or windows exposedYou share the whole screen or the wrong windowShare a single tab or window
Bookmarks reveal clients or toolsThe bookmarks bar is visible in the browserHide the bar (Ctrl/⌘ ⇧ B), close extra tabs
Sensitive data inside the shared pageSalary, keys or PII are visible in the app you're presentingBlur the fields in the page (BlurFirst)
Something unexpected appears liveA wrong record or a DM loads mid-callPanic hotkey to blur everything
A secret leaked in a recordingA token flashed on screen for a frameReview the recording, then rotate the secret
Common screen-share risks and how to shut each one down.

Why the blur step is the one most checklists miss

Sharing a single window, silencing notifications and cleaning up tabs all control the *environment* — they keep the wrong things from appearing around your content. None of them touches the content you meant to show. During a demo, the real exposure is usually right there in the tab you chose to share: the customer's name at the top of the CRM record, the salary column in the sheet, the live API key in the terminal panel.

An in-page blur is what covers that last gap. Because BlurFirst paints the blur into the page as real pixels, it survives Zoom, Meet, Teams, Loom, OBS, any recorder and screenshots — there's no unblurred copy left for a capture to find. Two honest limits to keep in mind: an extension only affects content inside a browser tab, not native apps or your desktop (a desktop app is in development), and automatic Scan detects *patterns* like emails and keys, not free-text names — so blur those by hand with a box or element blur.

Frequently asked questions

What is the most important step for secure screen sharing?

Share a single window or tab instead of your entire screen — it instantly keeps every other app, window and your desktop out of the feed. But it's only half the job: it can't hide sensitive data inside the tab you're intentionally sharing. Pair it with an in-page blur for the content, and Do Not Disturb for notifications.

How do I stop notifications from showing during a screen share?

Turn on Do Not Disturb (macOS Focus) or Focus Assist (Windows) before you start. This suppresses OS notification banners so incoming Slack messages, emails and calendar alerts won't slide into frame. It won't hide anything already on the page — for that you need to blur the content.

Should I share my whole screen or just one window?

Share one window or one tab. Sharing your entire screen exposes every other window, your taskbar or dock, and anything that pops up. In Zoom, Meet and Teams, the share picker lets you choose a single application window or browser tab so only that surface is sent.

What should I do if a password or API key showed up in my recording?

Rotate it. If a secret was visible on screen even for a single frame, treat it as compromised: generate a new key or password, revoke the old one, and re-check anywhere the old value was used. Editing the frame out later doesn't undo the exposure if the recording was already shared.

Can I hide sensitive data inside the app I'm actually presenting?

Yes — that's what an in-page blur does. A tool like BlurFirst lets you box-blur a region, click a single element, or auto-detect PII on the page, and the blur is painted in as real pixels so it survives recording. This is the piece that sharing a single window and enabling Do Not Disturb can't cover.

Blur it before you share it.

Hide any field, region or message on a page before your next call. Nothing you blur leaves your browser.

Add to Chrome