Forum Discussion

Copper Contributor

Dec 04, 2019

Sensitivity labels

I want to publish sensitivity labels; use sensitive data types to automatically label files with a sensitivity label and then create DLP policies based on a label. Is all this possible now?

ChrisHoardMVP

MVP

Dec 04, 2019

Hi @Anthony Weaver

You can publish sensitivity labels

https://docs.microsoft.com/en-us/microsoft-365/compliance/sensitivity-labels

You can automatically label files based on sensitive info type

https://docs.microsoft.com/en-us/microsoft-365/compliance/apply-sensitivity-label-automatically

You cannot base DLP policies on sensitivity labels currently, only retention labels and sensitive content types. There is a uservoice open for it currently.

https://office365.uservoice.com/forums/289138-office-365-security-compliance/suggestions/35826649-create-dlp-policy-based-on-sensitivity-label

Hope that answers your question

Best, Chris

Anthony_Weaver
Copper Contributor
Dec 05, 2019
ChrisHoardMVP
Thank you.

Do we know if/when DLP will be integrated with Sensitivity Labels?
- ChrisHoardMVP
  MVP
  Dec 13, 2019
  Hi Anthony_Weaver
  
  Per Article
  
  https://docs.microsoft.com/en-us/microsoft-365/compliance/data-loss-prevention-policies
  
  You can currently use only a retention label as a condition, not a sensitivity label. We're currently working on support for using a sensitivity label in this condition.
  
  No timeframe given. Unfortunately no articles on the Microsoft 365 Roadmap yet
  
  Best, Chris
  - JonasBack
    Iron Contributor
    Dec 13, 2019
    ChrisHoardMVP Thanks for confirming this. You have any idea why that is so? Maybe the Information Protection team thinks it's not really necessary since the actual document protected by Information Protection is encrypted and should not be able to be opened by unahtorized anyway so they simply don't think we need to DLP protect it?