Policies Overview

After installing Forcepoint DLP software and configuring system settings, the next step is to create a policy.

DLP policies enable monitoring and control of the flow of sensitive data throughout an organization. Depending on the existing Forcepoint DLP configuration, administrators can set up policies to monitor information sent via email and over HTTP and HTTPS channels, and ensure all communications are in line with applicable regulations and compliance laws. It is also possible to monitor email being sent to users’ mobile devices.

There are 5 kinds of DLP policies. These include:

  • A single email DLP policy that contains attributes to monitor in inbound and outbound messages. For each attribute (for example, the appearance of a defined key phrase), define whether to permit or quarantine the message, and whether a notification should be sent.

For more information, see Configuring the Email DLP Policy.

  • A single web DLP policy that contains attributes to monitor in HTTP, HTTP, and FTP channels, as well as websites to which sensitive data cannot be sent.

For more information, see Configuring the Web DLP Policy.

  • A single mobile DLP policy that contains attributes to monitor in email being sent to users’ mobile devices. For each attribute (for example, the appearance of a defined key phrase), define whether to permit or quarantine the message, and whether a notification should be sent.

For more information, see Configuring the Mobile DLP Policy.

  • A rich set of predefined policies that cover the data requirements for a wide variety of organizations. They include:
    • Acceptable use policies, such as Cyber Bullying, Self Destructive Patterns, and Indecent Images.
    • Content protection policies, such as US PII, Credit Cards, and Financial Information.
    • Data theft indicator policies, such as Suspected Malicious Dissemination and Disgruntled Employee.
    • Regulations, compliance, and standards policies, such as PCI and GDPR- related policies.

For more information, refer to Using Predefined DLP and Discovery Policies.

  • One or more custom policies. After using the regulatory policies for a time and monitoring the results, administrators can create custom policies as needed. For more information, refer to Creating Custom DLP Policies.
Note:

Administrators cannot delete or rename the email, web, or mobile DLP policy, but can enable or disable their attributes.

Administrators cannot update all rules or exceptions in email or web policies using the batch operations on the Manage Policies screen.

Before getting started with policy management and creation, see What’s in a policy?.