How to protect files,text,email share to whatsapp web or external sites

raju Kumar 156 Reputation points
2020-09-21T06:21:22.697+00:00

How to protect my company files, text, email, so that my employees cannot
share these data outside using Whatsapp web or any external website.

I also want to protect my company data by detecting text, files, email even it is being sent outside by encrypting.

I tried to explore the documentation area, but couldn't find anything.

Thanks,

Azure Information Protection
Azure Information Protection
An Azure service that is used to control and help secure email, documents, and sensitive data that are shared outside the company.
515 questions
Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,192 questions
Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
19,436 questions
0 comments
Accepted answer
  1. raju Kumar 156 Reputation points
    2020-09-22T09:43:17.883+00:00

    Thanks, Vipul for the explaination.

    I am aware of DLP and It looks like to me, DLP can only be applied to Microsoft Products.

    My concern is If a user is using the company system and he/she has access to whatsapp web.
    Can I restrict the user from sharing any file or text message which contains the company confidential information to Whatsapp.

    Also, If I have implemented DLP, Can I restrict a user from sharing bank account numbers for e.g in encrypted form over whatsapp web chat msgs.

    I'll also try intune, If this can be achieved using intune.

1 additional answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. VipulSparsh-MSFT 16,231 Reputation points Microsoft Employee
    2020-09-22T09:30:52.12+00:00

    @raju Kumar Thanks for reaching out. The protection of corporate data is important and has large surface area to control. When you say corporate files, text, emails you need to have a solution which can monitor these and a place/platform it can monitor.

    Now in order to achieve any of this you have to set a boundary where you can implement these solution. You have to decide which things are in your control and which are not :
    For example,
    1) can you control users access to something so that only limited people have access to some files or data.

    2) Do you have control over what kind of devices they will be using the data on ? (personal mobile phones or corp provided devices)
    As corp devices can be protected with MDM policies, but personal has less MDM restrictions.

    3) Do you have control over what network they use to access corp data ?

    Once you have decided above, you can then think of a solution of multiple solution to suit your needs.

    You can find some more information here : https://learn.microsoft.com/en-us/mem/intune/

    -----------------------------------------------------------------------------------------------------------------

    If the suggested response helped you resolve your issue, please do not forget to accept the response as Answer and "Up-Vote" for the answer that helped you for benefit of the community.

    0 comments