DLP policy to block an unencrypted email that contains sensitive or protected data

J-3804 1,601 Reputation points
2023-10-17T22:07:37.4666667+00:00

Hi team,

Could you please send me steps to block an unencrypted email that contains sensitive or protected data but allow the email if the same data is detected in an encrypted email?

Thank you for your help

Exchange Online
Exchange Online
A Microsoft email and calendaring hosted service.
6,185 questions
Microsoft Security | Microsoft Purview
0 comments No comments
{count} votes

Accepted answer
  1. Anonymous
    2023-10-18T03:02:02.0733333+00:00

    Hello @Jennifer

    1. Open the Microsoft 365 Compliance Center.

    User's image

    1. Go to the Data loss prevention page.

    User's image

    1. Click on the Create a policy button.
    2. Choose the appropriate policy type, such as Exchange email.
    3. Select the sensitive information types that you want to protect.
      User's image
    4. Choose the actions you want to take when sensitive information is detected, such as blocking the email or sending a notification.

    User's image

    1. Save the policy.

    <<but allow the email if the same data is detected in an encrypted email

    You can exclude encrypted emails by in "content contains" section select NOT "message type" is "permission controlled".

    after selecting the "Sensitive info types" press the "Add group" button. Then you can set the toggle NOT for the 2nd group.

    More details: https://community.spiceworks.com/topic/2484651-bypass-dlp-when-email-is-encrypted

    Regards

    Shaofan


    If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment". 

    Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.  

    1 person found this answer helpful.

0 additional answers

Sort by: Most helpful

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.