Microsoft Purview compliance portal: Endpoint Data Loss Prevention: Advanced label-based protection for all files on devices

🚨 The Signal: Purview Endpoint DLP now extends advanced label-based protection and automatic encryption to all file types on Windows devices, not just Office and PDF. This enhances data protection for sensitive information across a broader range of files.

The Impact

Security teams and end-users are affected, reducing the risk of sensitive data exfiltration from Windows endpoints.

• Security Teams: Reduced risk of data loss from endpoints.
• End-users: Consistent data protection across more file types.
• Compliance Officers: Improved adherence to data handling policies.

The Action

1. Review existing Endpoint DLP policies in Microsoft Purview compliance portal.
2. Navigate to Data loss prevention > Policies > Endpoint DLP settings.
3. Enable 'Advanced label-based protection for all files on devices' for Windows endpoints.
4. Test policies with various non-Office file types containing sensitive data.
5. Communicate enhanced protection to end-users.

Domain: Purview · Impact: medium · Workload: Microsoft Purview