Jul 31 2019 09:41 AM
Is there any way to monitor and prevent sensitive data like credit card number being copied from OneDrive for business to personal OneDrive? That is, user logon to OneDrive for Business and then logon via web browser to personal OneDrive and upload sensitive data?
Jul 31 2019 10:17 AM
Depends. You can use Intune MAM policies to control which apps can "share" data, as detailed here: https://docs.microsoft.com/en-us/intune/app-protection-policy
But there's nothing stopping the user from taking a picture of the screen and sharing it.
Aug 01 2019 07:58 AM
Thanks for your reply, can my goals be achieved by using Data Loss Prevention (DLP) as we don’t have Intune licences?
Aug 01 2019 10:07 AM
DLP is to prevent information being shared with external people, it doesn't restrict internal folks from copying it in any form. There's really no solution that can 100% reliably prevent a person that's able to access a file from sharing it or content within it.