Blog Post

Healthcare and Life Sciences Blog
4 MIN READ

Purview in the Real World Blog (December 8, 2022)

James_Havens's avatar
James_Havens
Icon for Microsoft rankMicrosoft
Dec 08, 2022

 

Disclaimer

This document is not meant to replace any official documentation, including those found at docs.microsoft.com.  Those documents are continually updated and maintained by Microsoft Corporation.  If there is a discrepancy between this document and what you find in the Compliance User Interface (UI) or inside of a reference in docs.microsoft.com, you should always defer to that official documentation and contact your Microsoft Account team as needed.  Links to the docs.microsoft.com data will be referenced both in the document steps as well as in the appendix.

All the following steps should be done with test data, and where possible, testing should be performed in a test environment.  Testing should never be performed against production data.

 

Target Audience

Presales Technical Specialist running Endpoint DLP testing

 

 

Document Scope

This document is for Compliance Technical Specialists troubleshooting Endpoint DLP issues and Endpoint Devices.

The purpose of this document (and series) is to provide the insights into various user cases, announcements, customer driven questions, etc.

 

 

Topics for this blog entry

Here are the topics covered in this issue of the blog:

  • Retention labeling inheritance
  • DLP Notification and Override in Outlook

 

 

Out-of-Scope

 

This blog series and entry is only meant to provide information, but for your specific use cases or needs, it is recommended that you contact your Microsoft Account Team to find other possible solutions to your needs.

 

 

Retention Labels Inheritance in SharePoint library, folder or document

 

In Microsoft Purview Data Lifecycle Management, you can create and publish retention labels (ex. Retain for 10 years and then dispose of them) for files within the SharePoint platform (ie. SharePoint, Teams OneDrive).

 

When dealing with Manual labeling of documents within the SharePoint platform, does each file need to be manual labeled?

 

The simple answer is NO. Let us look two options for applying retention labels:

  • Manual retention labeling - You can manually apply retention labels for each file.  This will require the employee to be trained on how to apply a published label.

 

Apply retention labels to files in SharePoint or OneDrive - Microsoft Support

 

  • Label Inheritance – Here is where the NO comes into play.  You can have users apply a retention label to a folder, and then have the users move files into that folder.  All files in that folder will inherit the folder’s retention label.

 

Note - Remember check the licensing required for this Folder Inheritance functionality (see "Service Descriptions" link below) to be sure this will work in your tenant.

 

Publish and apply retention labels - Microsoft Purview (compliance) | Microsoft Learn

 

Microsoft 365 guidance for security & compliance - Service Descriptions | Microsoft Learn

 

Learn about retention policies & labels to retain or delete - Microsoft Purview (compliance) | Microsoft Learn

Data Loss Prevention (DLP) - Notifications with Exchange thick client and the M365 web client.

 

Can an organization allow its users to override a Microsoft Purview DLP block in Outlook for Exchange Online?  The simple answer is YES.

 

Here is a screenshot of how you set that up in your DLP Rule (which is part of your DLP policy).

 

 

 

Thick Client Experience

Here is a screenshot of what the user will see in the Outlook thick client if they try to send an email containing data that is part of a DLP policy.

 

 

 

At the top of an email, the user will see a policy tip that explains the reason for the DLP block, and if you have the override enabled in the policy, the user will have a link to Override the DLP policy.  Here is an example.

 

 

 

When you click on the Override link, here is where you can enter the reason for the Override.

 

 

Once the override is done, then you can send the email.

 

Web Client Experience

 

Here is a screenshot of what the user will see in the Outlook thick client if they try to send an email containing data that is part of a DLP policy.

 

 

 

At the top of an email, the user will see a policy tip that explains the reason for the DLP block, and if you have the override enabled in the policy, the user will have a link to Override the DLP policy.  Here is an example.

 

 

 

When you click on the Override link, here is where you can enter the reason for the Override.

 

 

 

Once the override is done, then you can send the email.

 

How DLP works with Compliance portal & Exchange admin center - Microsoft Purview (compliance) | Microsoft Learn

 

Data Loss Prevention policy tips reference - Microsoft Purview (compliance) | Microsoft Learn

 

 

Appendix and Links

Publish and apply retention labels - Microsoft Purview (compliance) | Microsoft Learn

 

Flowchart to determine when an item is retained or deleted - Microsoft Purview (compliance) | Microsoft Learn

 

Learn about Microsoft Purview Data Lifecycle Management - Microsoft Purview (compliance) | Microsoft Learn

 

Apply retention labels to files in SharePoint or OneDrive - Microsoft Support

 

How DLP works with Compliance portal & Exchange admin center - Microsoft Purview (compliance) | Microsoft Learn

 

Data Loss Prevention policy tips reference - Microsoft Purview (compliance) | Microsoft Learn

 

Learn about retention policies & labels to retain or delete - Microsoft Purview (compliance) | Microsoft Learn

 

Updated Dec 09, 2022
Version 2.0
No CommentsBe the first to comment