Basically the policy is for any mail going to an outside email address, that includes american SSN. Rule just for exchange, not one drive or sharepoint as we don't use them.
DLP isn't working so well for email
Brian Farrar
1
Reputation point
I've setup a policy for simple detection of Socials and another for CC. I had tips on. I tested by starting an email out to an outside address and saw the tip not allowing me to send the email. But only if I put the SSN somewhere in the message. Does DLP not work unless the words social or SSN are in body???? Same for Creditcards. I have tried many settings like low confidence and such. Nothing will detect my socials or creditcards unless the words are near them. Is thwarting the filter this easy???