Embedded Files
DLP Rules:- (supported editions Enterprise Standard , Enterprise Plus)
DLP Rules:- (supported editions Enterprise Standard , Enterprise Plus)
Using data loss prevention (DLP), you can design and apply rules to control the content that users can share in files outward the organization. DLP gives you monitoring over what users can share, and prevents unintended exposure of sensitive information such as credit card numbers, CVV, or identity numbers.
DLP rules trigger scans of files for sensitive content, and prevents users from sharing that content. Rules determine the nature of DLP incidents, and incidents trigger actions, such as the blocking of specified content.
You can allow controlled sharing for members of a domain, organizational unit, or group.
Summary of DLP flow:
Summary of DLP flow:
You define DLP rules. These rules define which content is sensitive and should be protected. DLP rules apply to both My Drive and Shared drives.
DLP scans content for DLP rule violations that trigger DLP incidents.
DLP enforces the rules you defined and violations trigger actions, such as alerts.
You are alerted of DLP rule violations.
Use an audit-only rule to test new DLP rules
Use an audit-only rule to test new DLP rules
You can test DLP rules by designing rules that don't have an optional action, such as clogging or warning users. If these rules are triggered, data related to the incident is written to the Rules audit log. Go to Create DLP for Drive rules and custom content detectors.
DLP sample use cases
DLP sample use cases
You can use DLP to:
Audit the usage of sensitive content in Drive that your users may have already shared to gather information on sensitive files uploaded by users.
Directly warn end users not to share sensitive content outside of the domain.
Prevent sharing of sensitive data (such as a Social Security Number) with external users
Alert administrators or others about policy violations or DLP incidents.
Investigate details of an incident with information on the policy violation.
Applications and file types scanned by DLP
Applications and file types scanned by DLP
Scanned applications
Scanned applications
Applications scanned include:
Applications scanned include:
Sheets
Docs
Slides
Forms File Upload—Files submitted to Forms file upload questions are scanned by DLP. Responders may be warned or blocked from submitting their responses if they attempt to upload sensitive content.
Comments in Docs, Sheets, Slides, and Drawings and comment email notifications are not scanned by DLP. Also, Sites and Forms (other than File Upload) are not supported with DLP.
Scanned file types
Scanned file types
File types scanned for content include:
File types scanned for content include:
Document file types: .doc, .docx, .html, .pdf, .ppt., .wpd, .xls, .xlsx, .xml
Image file types: .bmp, .eps, .fif, .gif, .img_for_ocr, .jpeg, .png, .ps, .tif
Compressed file types: .7z, .bzip, .gzip, .rar, .tar, .zip
Custom file types: .hwp, .kml, .kmz, .sdc, .sdd, .sdw, .sxc, .sxi, .sxw, .ttf, .wml, .xps
Video and audio file types are not scanned.
Page updated
Report abuse