Advanced Data Loss Prevention Techniques

I have recently been implementing more advanced DLP (Data Loss Prevention) policies for multiple organizations.

For those not familiar with DLP, it is used to protect sensitive business and customer data. Many companies leverage DLP (Data Loss Prevention) tools such as Microsoft 365 Purview.

Within Microsoft 365 Purview you can create policies to detect sensitive information and get alerts if sensitive information is being shared or stored improperly.

These policies help detect various types of sensitive information.

There are built-in sensitive information types that can be used. For example, you could check for Social Security numbers, credit card payment information, U.S. Gramm-Leach-Bliley Act (GLBA) related data, or General Data Protection Regulation (GDPR) related data and much more.

Beyond built-in types, I recommend creating custom sensitive information types. One advanced method is to fingerprint certain confidential documents your business uses regularly. You can then detect the presence of those fingerprints across the entire platform in Exchange emails, Team chats, OneDrive files, SharePoint files, and even files stored on local devices.

Below are examples of key forms you may want to consider fingerprinting:

• Government forms
• Health Insurance Portability and Accountability Act (HIPAA) compliance forms
• Employee information forms
• Intellectual Property forms

Below is an overview image from Microsoft, of the fingerprinting process.

If you have questions about Data Loss Prevention tools, Microsoft Purview, risk and compliance, or Cybersecurity, reach out and I will try to help.