How to prevent users from bypassing Microsoft Cloud DLP

Micheal Mallo 355 Reputation points
2024-07-12T08:27:24.3366667+00:00

Dear team,

It's known that Microsoft Purview DLP protects sensitive information in Sharepoint, One drive and Exchange online, from being shared outside the organization. But what is the best way to prevent the end users from downloading documents with sensitive information to their devices, and then sharing them outside the organization using a personal account? Is it mandatory to have the Endpoint DLP configured or is there any other license-free alternative?

Regards

Microsoft Purview
Microsoft Purview
A Microsoft data governance service that helps manage and govern on-premises, multicloud, and software-as-a-service data. Previously known as Azure Purview.
1,386 questions
0 comments No comments
{count} votes

Accepted answer
  1. PRADEEPCHEEKATLA 90,541 Reputation points
    2024-07-12T08:40:44.2433333+00:00

    @Micheal Mallo - Thanks for the question and using MS Q&A platform.

    To prevent end users from downloading documents with sensitive information to their devices and sharing them outside the organization, you can use Microsoft Endpoint Data Loss Prevention (DLP) or Microsoft Cloud App Security.

    Microsoft Endpoint DLP is a paid solution that provides advanced data loss prevention capabilities for your organization's devices. It allows you to create policies that can prevent users from downloading or copying sensitive information to their devices. You can also configure policies to block users from uploading sensitive information to cloud services or sending it via email.

    If you are looking for a license-free alternative, you can use Microsoft Cloud App Security. It provides similar capabilities to Endpoint DLP, but it is included with some Microsoft 365 licenses. With Cloud App Security, you can create policies to prevent users from downloading or sharing sensitive information from cloud services like OneDrive and SharePoint. You can also monitor user activity and receive alerts when sensitive information is accessed or shared.

    It's important to note that while these solutions can help prevent data loss, they are not foolproof. It's still important to educate your users on the importance of protecting sensitive information and to have a clear policy in place for handling sensitive data.

    Hope this helps. Do let us know if you any further queries.


    If this answers your query, do click Accept Answer and Yes for was this answer helpful. And, if you have any further query do let us know.

    0 comments No comments

0 additional answers

Sort by: Most helpful

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.