Home

US SSN DLP Policy

%3CLINGO-SUB%20id%3D%22lingo-sub-103981%22%20slang%3D%22en-US%22%3EUS%20SSN%20DLP%20Policy%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-103981%22%20slang%3D%22en-US%22%3E%3CP%3EI%20have%20a%20Transport%20Rule%20set%20up%20to%20auto%20encrypt%20emails%20sent%20from%20our%20tenant%20to%20external%20users%20if%20they%20have%20an%20SSN%20in%20the%20body%20of%20the%20email%20or%20an%20attachment.%20It%20is%20hitting%20on%20some%20documents%20that%20do%20contain%20a%20pattern%20of%20SSN%3A%20xxx-xx-1234.%20I%20would%20like%20to%20figure%20out%20a%20way%20to%20exclude%20the%20document%20if%20the%20first%205%20digits%20of%20the%20pattern%20are%20x's.%20Is%20this%20possible%3F%3CSPAN%20class%3D%22lia-inline-image-display-wrapper%20lia-image-align-center%22%20style%3D%22width%3A%20567px%3B%22%3E%3CIMG%20src%3D%22https%3A%2F%2Fgxcuf89792.i.lithium.com%2Ft5%2Fimage%2Fserverpage%2Fimage-id%2F19714iFC5CF69B12A8AAFD%2Fimage-size%2Flarge%3Fv%3D1.0%26amp%3Bpx%3D999%22%20alt%3D%22DLP.PNG%22%20title%3D%22DLP.PNG%22%20%2F%3E%3C%2FSPAN%3E%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-LABS%20id%3D%22lingo-labs-103981%22%20slang%3D%22en-US%22%3E%3CLINGO-LABEL%3EExchange%20Online%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3EOffice%20365%3C%2FLINGO-LABEL%3E%3C%2FLINGO-LABS%3E%3CLINGO-SUB%20id%3D%22lingo-sub-104323%22%20slang%3D%22en-US%22%3ERe%3A%20US%20SSN%20DLP%20Policy%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-104323%22%20slang%3D%22en-US%22%3E%3CP%3EWell%20it's%20based%20on%20regex%2C%20so%20you%20just%20need%20to%20find%20the%20correct%20syntax.%20For%20example%2C%20this%20will%20match%20any%20SSN%20and%20not%20match%20any%20xxx-xx-1234%20pattern%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%5E(%3F!xxx-xx-%5Cd%7B4%7D)%5Cd%7B3%7D-(%3F!00)%5Cd%7B2%7D-(%3F!0%7B4%7D)%5Cd%7B4%7D%24%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-104293%22%20slang%3D%22en-US%22%3ERe%3A%20US%20SSN%20DLP%20Policy%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-104293%22%20slang%3D%22en-US%22%3E%3CP%3EYea%20I%20read%20over%20that%20document.%20I%20just%20dont%20know%20what%20to%20modify%20in%20the%20XML%20to%20exlude%20the%20xxx-xx-1234%20pattern.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EI%20have%20exported%20the%20xml%20file%20of%20our%20current%20rules%20and%20located%20the%20US%20SSN%20Section%2C%20but%20I%20do%20not%20understand%20it%20well%20enough%20to%20modify%20it%20properly.%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-104073%22%20slang%3D%22en-US%22%3ERe%3A%20US%20SSN%20DLP%20Policy%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-104073%22%20slang%3D%22en-US%22%3E%3CP%3EI%20guess%20modifying%20the%20default%2Fcreating%20a%20new%20custom%20sensitive%20type%20for%20SSN%20is%20one%20way%20to%20do%20this%3A%20%3CA%20href%3D%22https%3A%2F%2Fsupport.office.com%2Fen-us%2Farticle%2FCreate-a-custom-sensitive-information-type-82c382a5-b6db-44fd-995d-b333b3c7fc30%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%20noopener%20noreferrer%22%3Ehttps%3A%2F%2Fsupport.office.com%2Fen-us%2Farticle%2FCreate-a-custom-sensitive-information-type-82c382a5-b6db-44fd-995d-b333b3c7fc30%3C%2FA%3E%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3ERaising%20the%20confidence%20level%20might%20help%20as%20well.%3C%2FP%3E%3C%2FLINGO-BODY%3E
Robert Woods
Super Contributor

I have a Transport Rule set up to auto encrypt emails sent from our tenant to external users if they have an SSN in the body of the email or an attachment. It is hitting on some documents that do contain a pattern of SSN: xxx-xx-1234. I would like to figure out a way to exclude the document if the first 5 digits of the pattern are x's. Is this possible?DLP.PNG

 

 

 

 

 

3 Replies

I guess modifying the default/creating a new custom sensitive type for SSN is one way to do this: https://support.office.com/en-us/article/Create-a-custom-sensitive-information-type-82c382a5-b6db-44...

 

Raising the confidence level might help as well.

Yea I read over that document. I just dont know what to modify in the XML to exlude the xxx-xx-1234 pattern.

 

I have exported the xml file of our current rules and located the US SSN Section, but I do not understand it well enough to modify it properly.

Well it's based on regex, so you just need to find the correct syntax. For example, this will match any SSN and not match any xxx-xx-1234 pattern

 

^(?!xxx-xx-\d{4})\d{3}-(?!00)\d{2}-(?!0{4})\d{4}$

Related Conversations
Yammer Datacenter US/EU
Joseph Demmelmaier in Yammer on
2 Replies
Global Teams Feedback Policy
jwesener2 in Microsoft Teams on
1 Replies
How to get MIcrosoft Data loss prevention
Iivo Kerminen in Office 365 on
2 Replies