.png){kind=small}
Network-level crisis intervention protecting every connected device
1.2B
Devices managed globally by our technology partner
90+
Harmful content categories covered
Any
Device, OS and browser protected without exception
WHAT IS IT
Protection at network level
Ripple NetworkShield operates at your organisation's infrastructure level, protecting every device connected to your network to help save lives. It intercepts harmful online searches and provides signposting to support before users can reach harmful content.
Scalable: Enterprise-grade infrastructure supporting organisations of any size.
Flexible: Multiple deployment options to fit different infrastructure environments.
Proactive: Real-time crisis intervention and signposting to mental health support.
Who Is It For
For organisations of any size
NetworkShield operates at network level, requiring a static IP address for authentication. It is suitable for any organisation with a managed network, from a single-site business to a multi-national with complex infrastructure requirements.
SUBSCRIPTION ONLY
NetworkShield operates at network level, requiring a static IP address for authentication. It is suitable for any organisation with a managed network, from a single-site business to a multi-national with complex infrastructure requirements.
Private and listed businesses
Local authorities
NHS and public sector bodies
Healthcare and education
Construction
Commercial and public environments including construction, sports, hospitality, transportation
Discounts available for public sector organisations.
HOW IT WORKS
Three steps that can save a life
Step 1
Protection
Once deployed on your network, NetworkShield monitors all connected devices continuously. Coverage applies to every device on the network, regardless of operating system, browser or device type.
Step 2
Intervention
When a harmful signal is detected, a calmly presented, non-judgemental message appears on screen. Designed in consultation with mental health clinicians and people with lived experience, the intervention screen offers a message of hope and support pathways.
Step 3
Support
Support options include 24/7 helplines and local mental health resources. They cover both immediate crisis help and longer-term services, giving people the best possible chance of finding the right help for them.
See NetowrkShield in action and get advice on deployment, compatibility or customisation.
Deployment Modes
Three ways to deploy. One outcome.
Your deployment choice depends on your infrastructure, IT team's preferences and level of protection required. All three configurations deliver the Ripple intervention experience to people on your network. The key difference is what they can detect.
Route 1
On-site Appliance
Hardware installed on your network
A physical device installed on your premises that decrypts and inspects HTTPS traffic in real time.
NetworkShield reads search engine queries as they happen, identifies harmful search intent and triggers an intervention on the user's screen at the moment of the search.
What it detects:
Harmful search queries
Harmful website visits
Route 2
Cloud Proxy
Cloud-hosted, no hardware required
Traffic is routed through a cloud-based proxy that performs the same decryption and inspection as the on-site appliance, with no hardware to manage. Delivers the same search intent detection capability for organisations that prefer a fully cloud-managed infrastructure
What it detects:
Harmful search queries
Harmful website visits
Route 3
DNS Service
Configured via DNS settings only
A lightweight configuration change to your DNS settings that redirects requests to known harmful websites. No traffic decryption. Because DNS operates at domain level only, it detects visits to harmful sites rather than harmful search queries
What it detects:
Harmful website visits
Using NetworkShield in DNS mode? Add BrowserShield for complete protection.
Because DNS operates at the domain level, it cannot detect what a person searched for – only where they tried to go. NetworkShield DNS and Ripple BrowserShield are designed to work together: NetworkShield covers harmful websites across every device on the network, while BrowserShield adds search intent detection on managed machines. Together, they provide the same depth of protection as the decrypting deployment modes.
KEY BENEFITS
Why organisations choose
On every device
NetworkShield sits on the network and is activated for every user the moment it’s deployed. It covers personal phones, tablets and any device connected to your Wi-Fi.œ
No size limit
From a small office to a multi-site enterprise, NetworkShield scales to any organisation. Our technology partner manages connectivity for 1.2 billion devices globally.
90+ harmful content categories
Covers self-harm and suicide plus over 90 additional categories including illegal and illicit content. Individual categories can be enabled or disabled as you prefer.
Organisation-level reporting
Can provide a high-level report on activations within your organisation, including total activation counts and triggered content categories. Individual users are never identified.
OS, device and browser agnostic
For Windows, macOS, Linux, iOS, Android on any browser, any device. If it is connected to your network, it is protected.
No software to manage
Once deployed, NetworkShield requires no software installation, updates or maintenance on individual devices. Any configuration changes are made centrally.
See NetowrkShield in action and get advice on deployment, compatibility or customisation.
COVERAGE
What NetworkShield covers
NetworkShield provides the broadest content coverage of any Ripple product, with self-harm and suicide protection applied globally universally and always on.
Category
Availability
Self-harm and suicide
Core. Active globally. Cannot be disabled.
90+ additional categories
A comprehensive range of harmful content types, including Illegal and illicit content. Speak to our team for the full category list.
Category configuration
Individual categories can be switched on or off to match your organisation's requirements.
Category
Availability
Self-harm and suicide
Core. Active globally. Cannot be disabled.
90+ additional categories
A comprehensive range of harmful content types, including Illegal and illicit content. Speak to our team for the full category list.
Category configuration
Individual categories can be switched on or off to match your organisation's requirements.
TECHNICAL SPECIFICATIONS
Built to work with your infrastructure
NetworkShield integrates with your existing network infrastructure. There is no software to install on individual devices, no browser restrictions and no operating system dependencies.
Specification
Detail
Operating systems
Any OS (OS-agnostic)
Devices
Any device (device-agnostic)
Browsers
Any browser (browser-agnostic)
Deployment options
On-site network appliance (transparent proxy), Cloud proxy, DNS service
Protection level
Decrypting modes: harmful search queries and harmful websites. DNS mode: harmful websites only.
Authentication
Static IP address required for service authentication
Specification
Detail
Scale
No upper limit. Technology partner manages 1.2 billion devices globally.
Deployment support
Support available for IT teams in testing, pilot initiatives and full rollouts
Data privacy
NetworkShield does not collect any personally identifiable information
Security & standards
ISO 27001, ISO 9001, Cyber Essentials, regular penetration testing
Reporting
High-level organisational report available: total activations and triggered content categories. Individual-level reporting is not possible.
Customisation
Support resource options can be tailored to your organisation (conditions apply)
Specification
Detail
Operating systems
Any OS (OS-agnostic)
Devices
Any device (device-agnostic)
Browsers
Any browser (browser-agnostic)
Deployment options
On-site network appliance (transparent proxy), Cloud proxy, DNS service
Protection level
Decrypting modes: harmful search queries and harmful websites. DNS mode: harmful websites only.
Authentication
Static IP address required for service authentication
Scale
No upper limit. Technology partner manages 1.2 billion devices globally.
Deployment support
Support available for IT teams in testing, pilot initiatives and full rollouts
Data privacy
NetworkShield does not collect any personally identifiable information
Security & standards
SO 27001, ISO 9001, Cyber Essentials, regular penetration testing
Reporting
High-level organisational report available: total activations and triggered content categories. Individual-level reporting is not possible.
Customisation
Support resource options can be tailored to your organisation (conditions apply)
See NetowrkShield in action and get advice on deployment, compatibility or customisation.
Reporting
What NetworkShield can and can’t report
NetworkShield’s high-level activation report shows the total number of times signposting was triggered within your network and the content categories triggering it.
It cannot report on individual use because Ripple technology does not collect personally identifiable information.
What NetworkShield can report
Total activations within your organisation
Content categories that triggered
Activation trends over time
What NetworkShield cannot report
Which individual triggered an activation
Which device was used
The specific search query that triggered an intervention
A different kind of ROI
The value of crisis intervention technology cannot be measured in the same way as a typical software investment.
If NetworkShield is never triggered, that’s the best outcome. That means no employee reached a crisis point where they searched for ways to self-harm. If it is triggered, it has provided a potentially life-saving intervention.
Like a fire suppression system, its value lies in being there when it’s needed - not in how often it’s used.
PRIVACY AT THE CORE
We don’t collect personal data; we save lives.
Privacy is the cornerstone of BrowserShield. The tool was designed from the ground up to provide crisis intervention without compromising the dignity or anonymity of anyone it protects.
No personally identifiable data
NetworkShield does not collect any personally identifiable information. It cannot identify individual users, devices or search queries.
Single-purpose inspection
In decrypting deployment modes, network traffic is inspected only to identify harmful content signals. It is not logged, stored or used for any other purpose.
Dignity by design
In decrypting deployment modes, network traffic is inspected only to identify harmful content signals. It is not logged, stored or used for any other purpose.
CUSTOMISATION
Tailored to your people
We review customisation requests to make sure all featured services meet our standards for capacity and quality. Please allow lead time when planning your deployment.
What can be customised:
Support services and helplines on the intervention screen
Your internal mental health or EAP contact details
Geographical relevance of resources
Active content categories (from the 90+ available)
What remains unchanged:
The visual design, colours and illustrations of the intervention screen
The wording of the message of hope presented to the individual
The core detection and intervention logic
SUBSCRIPTION
For organisations of any size
Protect every device on your network with NetworkShield, available as an on-site appliance, cloud proxy or DNS service. Priced for your organisation, with discounts available for public sector bodies.
Better Together
NetworkShield & BrowserShield: stronger together
Each Ripple product is highly effective on its own. Used together, NetworkShield and BrowserShield create an even more comprehensive layer of protection, combining network-level coverage across every device with search intent detection on managed machines, whether on-site or working remotely.
Covers every device on the network
Covers personal devices and mobiles
90+ content categories
Registered charities
Covers personal devices and mobiles
Detects harmful search intent on managed devices
Works off-network (home, travel, mobile data)
Free for schools and charities
Requires installation on each managed device
Does not cover personal devices or mobiles
Together: full search intent detection on managed devices + website protection on every device on the network + off-network protection when staff are working remotely