Skip to content

Data Loss Prevention Demo Video

This video demonstrates some Data Loss Prevention (DLP) features. Data Loss Prevention, or DLP, is included with the Microsoft 365 Business Premium subscription. Essentially, Data Loss Prevention helps businesses prevent the inadvertent sharing of sensitive documents. Data Loss Prevention policies can be created from preconfigured templates to enable automatic detection of documents that contain various types of sensitive information. These policies help make users aware that documents contain sensitive information that shouldn’t be inadvertently shared outside the organization.

Having Data Loss Prevention policies in place helps companies comply with business standards and industry regulations. Such sensitive information may include:

  • Personally-Identifiable Information (PII)
  • Social Security Number Confidentiality (SSN)
  • Health Insurance Portability and Accountability Act (HIPAA)
  • U.S. Financial Data (e.g., bank account and credit card numbers)

The Security & Compliance Center in Office 365 helps you to identify, monitor, and automatically protect sensitive information across all of Office 365 including data from Exchange Online, SharePoint Online, OneDrive for Business, and Microsoft Teams.

Get to Know Data Loss Prevention in Office 365

Personally-Identifiable Information (PII)

Helps detect the presence of information commonly considered to be personally identifiable information ‎(PII)‎ in the United States, including information like social security numbers or driver’‎s license numbers. Use of this policy does not ensure compliance with any regulation. After your testing is complete, make the necessary configuration changes in Exchange so the transmission of information complies with your organization‎’s policies. Examples include configuring TLS with known business partners or adding more restrictive transport rule actions, such as adding rights protection to messages that contain this type of data.

Social Security Number Confidentiality (SSN)

Helps detect the presence of information subject to U.S. State Social Security Number Confidentiality Laws, including data like social security numbers. Use of this policy does not ensure compliance with any regulation. After your testing is complete, make the necessary configuration changes in Exchange so the transmission of information complies with your organization‎‎’s policies. Examples include configuring TLS with known business partners or adding more restrictive transport rule actions, such as adding rights protection to messages that contain this type of data.

Health Insurance Portability and Accountability Act (HIPAA)

Helps detect the presence of information subject to United States Health Insurance Portability and Accountability Act ‎(HIPAA)‎, including data like social security numbers and health information. Use of this policy does not ensure compliance with any regulation. After your testing is complete, make the necessary configuration changes in Exchange so the transmission of information complies with your organization‎’s policies.

U.S. Financial Data (e.g., bank account and credit card numbers)

Helps detect the presence of information commonly considered to be financial information in United States, including information like credit card, account information, and debit card numbers. Use of this policy does not ensure compliance with any regulation. After your testing is complete, make the necessary configuration changes in Exchange so the transmission of information complies with your organization‎’s policies. Examples include configuring TLS with known business partners or adding more restrictive transport rule actions, such as adding rights protection to messages that contain this type of data.