Configuring the Mobile DLP Policy

Use the Forcepoint DLP mobile DLP quick policy to define what content can and cannot be sent to mobile devices—such as phones and tablets—from network email systems. This can be used to protect data in case an employee’s mobile device is lost or stolen.

The system analyzes content when users synchronize their mobile devices to their organization’s Exchange server. If content being pushed to the device breaches the mobile DLP policy, it is handled according to the policy, whether the content is part of an email message, calendar item, or task.

Mobile policies are set for user directory entries (users and groups), business units, or custom users, not individual mobile devices. In other words, sensitive data can be blocked from being sent to John Doe’s mobile devices, but not to a particular device ID.

The mobile DLP policy requires a subscription to Forcepoint DLP Endpoint. Note that the mobile DLP policy applies to mobile email only.

• To monitor network email, configure the email DLP policy.
• To monitor endpoint email, configure a custom policy.