Introduction
Your organization's data loss prevention (DLP) policies in Exchange, SharePoint, and Teams are working. Sensitive files are blocked from external sharing, email policies catch outbound messages with financial data. Then a compliance review reveals that an employee downloaded a customer database from SharePoint, copied it to a personal USB drive, and took it home. None of your existing policies saw it happen. They stop at the cloud boundary.
Endpoint data loss prevention (DLP) in Microsoft Purview closes that gap. It extends policy enforcement to the device itself: copying to USB, uploading to personal cloud storage, printing, pasting into browser forms. The same kinds of rules you already have for cloud services, applied where files land.
Learning objectives
By the end of this module, you'll be able to:
- Identify where endpoint DLP fits in a broader DLP strategy and what activities it protects against
- Onboard devices for endpoint DLP using the method that matches your environment
- Configure endpoint DLP settings that balance protection with user productivity
- Create and manage endpoint DLP policies with appropriate conditions, actions, and simulation
- Determine when just-in-time protection is appropriate and choose the right fallback action