cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
SOLVED

OneDrive for business - IT security check

yasothadevi
Copper Contributor

‎Feb 25 2020 04:52 AM

‎Feb 25 2020 04:52 AM

OneDrive for business - IT security check

Hi,

   From the IT Security perspective, if IT Security team needs to perform below on OneDrive data what are the options?

1. Hold the data in user's OneDrive due to suspecting data leak or information leak

2. Retrieving the data deleted from user's Recycle Bin and second level Recycle Bin from OneDrive site

3. Stopping user from clearing Recycle Bin.

 

Is it possible to perform above? If possible, still the user will be notified?

 

Regards,

YasothaDevi

591 Views
0 Likes
2 Replies
Reply
2 Replies
best response confirmed by yasothadevi (Copper Contributor)
Cian Allner

‎Feb 25 2020 05:40 AM - edited ‎Feb 25 2020 05:41 AM

‎Feb 25 2020 05:40 AM - edited ‎Feb 25 2020 05:41 AM

Solution

Re: OneDrive for business - IT security check

Hi, have a look at retention policies, which can be applied to OneDrive 

 

https://docs.microsoft.com/en-us/microsoft-365/compliance/retention-policies

 

"Comply proactively with industry regulations and internal policies that require you to retain content for a minimum period of time. Retaining content so that it can't be permanently deleted before the end of the retention period.  When content is subject to a retention policy, people can continue to edit and work with the content as if nothing's changed because the content is retained in place, in its original location. But if someone edits or deletes content that's subject to the policy, a copy is saved to a secure location where it's retained while the policy is in effect."

 

There is also eDiscovery hold:

 

https://docs.microsoft.com/en-gb/microsoft-365/compliance/ediscovery-cases

 

"You can use an eDiscovery case to create holds to preserve content that might be relevant to the case. You can place a hold on the mailboxes and OneDrive for Business sites of people who are custodians in the case. When you place content locations on hold, content is held until you remove the hold from the content location or until you delete the hold."

 

1 Like
Reply
Juan Carlos González Martín

‎Feb 25 2020 09:09 AM

‎Feb 25 2020 09:09 AM

Re: OneDrive for business - IT security check

Agree here, retention policie are the way to go
0 Likes
Reply
1 best response

Accepted Solutions
best response confirmed by yasothadevi (Copper Contributor)
Cian Allner

‎Feb 25 2020 05:40 AM - edited ‎Feb 25 2020 05:41 AM

‎Feb 25 2020 05:40 AM - edited ‎Feb 25 2020 05:41 AM

Solution

Re: OneDrive for business - IT security check

Hi, have a look at retention policies, which can be applied to OneDrive 

 

https://docs.microsoft.com/en-us/microsoft-365/compliance/retention-policies

 

"Comply proactively with industry regulations and internal policies that require you to retain content for a minimum period of time. Retaining content so that it can't be permanently deleted before the end of the retention period.  When content is subject to a retention policy, people can continue to edit and work with the content as if nothing's changed because the content is retained in place, in its original location. But if someone edits or deletes content that's subject to the policy, a copy is saved to a secure location where it's retained while the policy is in effect."

 

There is also eDiscovery hold:

 

https://docs.microsoft.com/en-gb/microsoft-365/compliance/ediscovery-cases

 

"You can use an eDiscovery case to create holds to preserve content that might be relevant to the case. You can place a hold on the mailboxes and OneDrive for Business sites of people who are custodians in the case. When you place content locations on hold, content is held until you remove the hold from the content location or until you delete the hold."

 

View solution in original post

1 Like
Reply