PC Wrapper controls access to physical ports (USB, serial, parallel) and software communication interfaces (ports).
For example, it is possible to determine which USB stick is passed on to the virtual machine and which VM can pass through your web service to the outside. This ensures that only the peripheral that has been allowed by the administrator can be used and security vulnerabilities are prevented by open ports that can serve as gateway for malicious software.
PC Wrapper also provides a firewall. As a result, the Windows desktop is masked in a private network and is not directly vulnerable to public networks such as café, hotel or airport.