The Data Loss Prevention Policy allows users to define policies and policy rules for the organization to improve protection of information usually sent through email, including financial and personal data.DLP policies contain sets of conditions, which are made up of transport rules, actions, and exceptions.
In this example we’ll create policy which,in case someone in organization,send a mail with word “salary” in subject or body,report will be sent to administrator.
From ECP click compliance management,data loss prevention,’triangle” near + and choose New custom DLP policy:
Select policy and edit it (pencil icon)
Click rules,select “triangle” again 🙂 and select Notify sender when sensitive information is sent outside the organization
Select “the sender is this person” (track messages sent by specific people-don hall)
Select desired user,click add and click OK again
We now need to add second condition-track specific word in subject or body (salary)
What to do when condition is met-add action (notify adminstrator)
On first “select one” choose administrator
and the second select one choose “Include original mail”
When we click save,transport rule is automatically created (mail flow-rules)
Testing and verifification:
From don.hall i sent email to my hotmail account with subject salary and administrator got this email
geekdudes 