Introduction

Completed

Data loss prevention (DLP) is a security feature that protects sensitive data in email, SharePoint content, and Office files. DLP prevents this data from being accidentally or intentionally shared with unauthorized users. For example, DLP can prevent someone from sharing personal information or intellectual property. It can also stop someone from accidentally emailing a file attachment to an unauthorized recipient.

This module examines the fundamentals of data loss prevention in Exchange and SharePoint. You configure data loss prevention through DLP policies. These policies consist of conditions and actions. Policies center around identifying sensitive information data. In this module, you learn how conditions and actions work together to support data loss prevention in Microsoft 365.

This module also introduces you to Endpoint data loss prevention. Endpoint DLP extends the activity monitoring and protection capabilities of DLP to sensitive items that users store on Windows 10, Windows 11, and macOS devices.

You're also introduced to adaptive protection in DLP, which is a new feature that currently is in Preview mode. Adaptive Protection in Microsoft Purview integrates Microsoft Purview Insider Risk Management with DLP. When insider risk identifies a user who's engaging in risky behavior, they're dynamically assigned to an inside risk level. In turn, adaptive protection can automatically create a DLP policy to help protect the organization against the risky behavior that's associated with that inside risk level.

This module also introduces you to three key reporting tools that organizations can use. You learn how these tools enable organizations to view DLP policy violations and triage actions taken on sensitive information:

  • DLP Alerts dashboard
  • DLP Activity explorer
  • DLP Overview page