You are an agent of the European Union Delegation in a third country. Your supervisor has sent you a confidential report containing personal data of EU citizens and requires that you share it with an external expert team for analysis. According to the EU regulatory framework and good digital security practices, which is the first essential step you should take before sharing this document?