Forum Discussion
Testing O365 DLP Policy
Hi,
I'm testing a DLP Policy for emails and have enabled "I'd like to test it out first"
and have the following checked: "Show policy tips while in test mode"
I want to know if the Override option will display during the testing? Or will it only show up when I turn on the policy?
As well, I just want to be sure that when I have the following enabled, that the emails will still get sent out as long as the user overrides and provide a reason, see attached.
Hi Suolon,
Not a problem - can understand the anxieties if you haven't done if before. They should not be blocked from sending out the emails unless you choose to block them.
You can find out more about the encryption here
https://docs.microsoft.com/en-us/office365/securitycompliance/email-encryption
And the recipient experience here
https://www.peters.com/office-365-message-encryption-ome/
Encryption is designed for automated encryption of sensitive data; for example school or patient PII data. Most organisation's I have worked with tend to block as they don't want this information going out over email and prefer a different sharing forum such as Microsoft Teams (I.e. guest access)
Best, Chris
7 Replies
- Hi Suolon,
Yes, that is correct, and is confirmed in the following article which should also provide some guidance and what to expect
https://docs.microsoft.com/en-us/office365/securitycompliance/create-test-tune-dlp-policy
There is also a string I would recommend here on the Community which also discusses setting up notifications for overrides and actions to take when users have performed an override of the DLP policy
https://techcommunity.microsoft.com/t5/Security-Privacy-Compliance/Overrides-and-false-positives-in-DLP-policy-end-user-experience/td-p/202790
Hope I have answered your question. If I have, please like and set as the solution. If not, please let me know what more I can do to help. Thanks for raising this to the Tech Community.
Best, ChrisHi Chris,
Thanks again for responding to my post. I'm just checking out your two links now.
I have already created 5 DLP policies for our tenant, all which are in test mode with Policy Tips, but during the test I don't see anywhere to override and it wasn't clear in the setup if we would see the override.
I'm just worried that once I turn on the DLP, that the users will be blocked from sending out the emails, even if I do have the Override feature turned on.
I do have one other question. In the DLP setting, I see that we can either Block the email from being sent, or Encrypt the email before sending, I would like to know what the experience is for the recipient when they get the encrypted email - how would they open and view the email?
Hi Suolon,
Not a problem - can understand the anxieties if you haven't done if before. They should not be blocked from sending out the emails unless you choose to block them.
You can find out more about the encryption here
https://docs.microsoft.com/en-us/office365/securitycompliance/email-encryption
And the recipient experience here
https://www.peters.com/office-365-message-encryption-ome/
Encryption is designed for automated encryption of sensitive data; for example school or patient PII data. Most organisation's I have worked with tend to block as they don't want this information going out over email and prefer a different sharing forum such as Microsoft Teams (I.e. guest access)
Best, Chris
