This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(54.400000000000006, 31%, 15%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EML%3C/text%3E%3C/svg%3E)
A Manager wants to have total control over 5 employee data.
The laptop is provided by the Company and any file created by the employee, the Manager should be able to see it. No files should be deleted by the employee even if the employee is the owner of the document it. Is there any solution from Microsoft using Intune , Conditional access or DLP ?
@milo last - Just checking in to see if the below answers helped. If this answers your query, do click Accept Answer and Yes for was this answer helpful. And, if you have any further query do let us know.
DLP. Not sure is this possible to have such control in user profile's OneDrive folders.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(83.2, 40%, 18%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECS%3C/text%3E%3C/svg%3E)
I'm not sure that intune or conditional access are the tools for this. I would use Purview (ie DLP or Data Loss Prevention)
If you set a retention hold, files are retained for the retention period which can be indefinite. https://learn.microsoft.com/en-us/purview/create-retention-policies?tabs=other-retention
And give the manager access to all onedrives, tell staff not to delete files, and also give the manager access to the retention hold folders.