This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(64, 85%, 16%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMW%3C/text%3E%3C/svg%3E)
I've deployed WIP in my environment, copy paste feature or uploading document is functioning. However, I found out that I can still attach work document in my Outlook and send to my personal email. Then I can download the doc from my personal email and edit it. Current configuration on devices are Intune and MDM enrolled. Azure AD joined as well.
Anyways that we can restrict this behavior?
@Marcus Wong Theen Nam Thanks for posting in our Q&A. From your description, did you mean that you didn't want to send the protected attachment to personal email? If there is any misunderstanding, feel free to let us know.
To clarify this issue, we appreciate your help to collect some information:
If there is anything update, feel free to let us know.
If the response is helpful, please click "Accept Answer" and upvote it.
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.
Hi @Lu Dai-MSFT ,
Yes, I do not want to allow users to be able to send work document to personal email like gmail/yahoo. Can this be achieved?
I do not have the access to intune portal at this moment but I could provide you the below information first.
We got the doocument from our sharepoint, once downloaded it will be a work protected document.
Which browser did you use for accessing personal email? Have you added the browser as a protected app in your WIP policy?
Hi Rahul,
No, the situation is I'm using Microsoft Outlook which is the protected/enlightened apps to send an email with the work protected document as attachment. Isn't this abnormal while we are blocking copy/paste but then we can still send out the attachment using outlook to Gmail and open it to edit as personal document? This looks like a bypass to me where I can't copy paste work protected content to personal document but if I just simply send this document to my personal email and download it then I can do whatever I want with the document.
WIP is a best effort approach to keeping honest users honest and preventing them from accidentally disclosing info. It is not a comprehensive solution and was never meant to be (or can be).
To protect against both accidental or deliberate data disclosure, you should implement Microsoft DLP: https://techcommunity.microsoft.com/t5/security-compliance-and-identity/announcing-microsoft-endpoint-dlp-general-availability/ba-p/1814010