Data Loss Prevention

(DLP)

Common Questions & FAQ's

Who is Looking at My Files?

No one! SU has an automated system that scans the SU cloud for content that contains Social Security and Credit Card information.

What is the DLP system looking for?

The automated system has an algorithm that has been trained to look for SSN and CC information.

How Does SU Use DLP?

The automated system scans files stored in the SU Cloud. When it finds a file that matches its algorithm, and has been shared with external people or to anyone with the link, the file gets flagged, and sharing permissions are removed from the document.

What happens if a document is flagged?

When the automated system finds a file that matches its algorithm, the file gets flagged, and sharing permissions are removed from the document. The system will then notify you and our Information Security Office (ISO) of the action the system has taken.

Will I get in trouble?

This system is all about securing data stored in SU's cloud, it is not meant to get people in trouble. The ISO may contact you to discuss best practices and data safety.

What if I really need the file shared?

If you have a legitimate reason to share the file, you may request an exception by responding to the email notice that was sent to you.

My File Got Flagged, but doesn't have any SSN or CC info!

While rare, false positives happen. It could be a mistyped phone number or something else that flagged the violation. If you must share that document, please submit an exception by responding to the email.

Where can I Find More Information?

The IT policy and the SU Data Security Website are great resources for the Shenandoah University community on all things related to data safety and security.

Report abuse