Encrypting files for removable media

Forcepoint DLP Endpoint provides two methods for encrypting sensitive data that is copied to removable media:

• Encrypt with profile key (Windows only): When you transfer files to removable media, the files are encrypted automatically with an encryption password deployed in the endpoint profile. When you try to transfer the encrypted files again, Forcepoint DLP Endpoint automatically decrypts the files using the deployed password if the user decrypting the files is using the same profile.
• Encrypt with user password (Windows only): When you transfer files to removable media, the files are encrypted automatically. When you try to transfer the encrypted files again, you must use the Forcepoint Decryption Utility and an encryption password to decrypt the files.

For more information about setting your encryption password, see Setting encryption passwords.

For more information about decrypting files, see Decrypting files on a removable media device.

Contact your administrator to see which option is configured in your organization. To see if your organization encrypts data with a user password, right-click the Forcepoint One Endpoint icon in the task bar’s notification area on a Windows endpoint machine. If you see a Set Encryption Password option, your organization encrypts data with a user password.