By default, the DLP policy scans the uploaded files to SharePoint for potentially leaked information, such as credit card number and Social Security Number (SSN).
Office 365 SharePoint DLP policy supports these actions:
Send files with sensitive data to the vault.
Alert owner: Sends an email notification to the user who uploaded a file that contains sensitive information.
Alert admin(s): Sends an email notification to the admin(s) about the files that contain sensitive information.
To configure DLP policy:
Click Policy on the left panel of the AvananAdministrator Portal.
Click Add a New Policy Rule.
From the Choose SaaS drop-down list, select Office 365 SharePoint.
From the Choose Security drop-down list, select DLP and click Next.
Select the desired protection mode (Detect and Remediate or Detect).
If required, you can change the Rule Name.
Choose Scope for the policy.
To apply the policy to specific users or groups, select the users and groups and click Add to Selected.
To apply the policy to all users and groups in your organization, enable All Users and Groups checkbox.
To exclude specific users or groups from the policy, select the users/groups and click Add to Excluded.
Under DLP Criteria, select the DLP categories required for the policy.