Data Protection using Microsoft Purview (DLP)
๐ฏ Objective
To prevent sensitive data leakage using Data Loss Prevention (DLP) policies in Microsoft 365.
๐ง What is Data Loss Prevention (DLP)?
DLP helps organizations:
- Detect sensitive information
- Prevent data leaks
- Enforce compliance policies
๐ ๏ธ Prerequisites
- Microsoft 365 Admin account
- Access to Purview Compliance Portal
๐ Step 1: Open Microsoft Purview
- Go to: https://compliance.microsoft.com
- Open **Microsoft Purview portal
๐ Step 2: Create DLP Policy
- Navigate to: Data Loss Prevention โ Policies
- Click Create Policy
๐ Step 3: Choose Template
Select template based on:
- Financial data
- Personal data (PII)
- Custom policy
๐งพ Step 4: Define Sensitive Data
Examples:
โ Credit card numbers
โ Aadhaar / SSN
โ Email addresses
โ๏ธ Step 5: Configure Rules
Define what happens when sensitive data is detected:
โ Block email
โ Show warning
โ Notify admin
๐ Step 6: Choose Locations
Apply policy to:
- Exchange (Emails)
- SharePoint
- OneDrive
- Teams
๐ Step 7: Enable Policy
- Review settings
- Turn policy ON
๐งช Step 8: Test Policy
- Send email with sensitive data
- Verify:
โ Warning shown
โ Action applied
๐ก Real-World Scenario
Employee tries to send credit card data via email:
โ Email blocked
โ Admin notified
โ Key Takeaways
โ Prevents data leakage
โ Ensures compliance
โ Protects sensitive information
โ Works across Microsoft 365
๐ง Conclusion
Microsoft Purview DLP is essential for protecting organizational data and ensuring compliance with security policies.