What is a DLP directive ? How can you help me protect my company’s data?
One of the main concerns of companies, regardless of their size and sector, is the risk of losing sensitive data for the business. Digital transformation, mobility and productivity in companies have led to an improvement in communications , but at the same time they have favored the loss of control over the flow of confidential data.
The loss or leakage of these data, often unintentionally, is a great economic impact for the company because their most valuable data can end up in the wrong hands. In addition, your reputation will be hard hit.
There are tools – data loss prevention systems – that detect and control sensitive data from all flows and communications that occur both inside and outside a company.
A data loss prevention (DLP) policy allows you to automatically identify, monitor and protect sensitive information.
Microsoft Office 365 business offers a Data Loss Prevention tool that monitors and records the use made of sensitive data in all your applications.
Functions of a DLP policy
DLP directives allow you to:
Identify confidential information in all applications and track it both locally and in the cloud.
Avoid the accidental sharing of sensitive or confidential information through notices and locks.
Create new categories of sensitive data to specifically protect the confidential information your business deals with.
Obtain detailed reports on policies: activity statistics, false positives, statistics of infractions, etc.
Teach users good practices without interrupting their workflows and improving productivity.
How does a DLP policy work in Office 365?
DLP directives work through a series of configurable rules . A series of conditions, actions, notifications and invalidations are established. If any of these conditions is met, the board carries out the actions that have been determined, such as notifying the infringement by means of a pop-up or warning and invalidating the user who committed the infraction.
Thanks to its system of notifications and blocking, it is avoided to share confidential information without interrupting the workflows of the employees, keeping productivity intact and reducing the risk . In addition, with the mandatory compliance of the GDPR as of May 25, 2018, a data leak, although unintentional, involves the payment of exorbitant fines and the notification of the infraction to the Control Authority in a period less than 72 hours. . [More information on the GDPR] .
In Office 365 there are more than 80 different categories of confidential data. If you search for a specific category and it does not appear in the list, Office DLP policies allow you to create new categories and implement very specific policies that protect only certain types of data.
Finally, the directives allow tracking and consulting the history of “infractions”. In the Office 365 administration center , in the Security and Compliance section, you have a complete view of the DLP analysis of the different prevention policies that you have active. You can carry out a quick impact assessment and obtain information from specific periods of time, discover the processes where the directives are violated and review any leak or impact on your business.
At Tecon Soluciones Tecnológicas we help you protect your business information , improve your productivity and facilitate your business mobility with the Office 365 productivity suite. MORE INFORMATION OFFICE 365 .