Data Protection tab

When the Data Protection Service (DPS) is enabled for your account, a Data Protection tab is available when adding or editing a policy.

Click the Data Protection tab in the policy to configure options for handling potential data issues using DPS.

Note: Data Protection Service integration requires an additional license. If you would like further information on integrating with Data Protection Service, contact your account manager.

When Data Protection Service is enabled, enterprise data protection is handled by DPS: the cloud service sends outbound email messages containing sensitive data to DPS for inspection. Sensitive data may include intellectual property, data that is protected by national legislation or industry regulation, and data suspected to be stolen by malware or malicious activities. Email messages containing such data are then blocked or allowed based on information provided to the cloud service by DPS, using the policies defined in Forcepoint DLP.

On the Data Protection tab:

Before you begin, ensure that you have uploaded the configuration file on the Account > Data Protection Settings page.

  1. When you are ready for DPS to be used for data security, toggle the Enable Data Protection Service button to ON.

    Until this switch has been turned on and the change saved, data security is not monitored for the policy.

  2. From Analysis mode, select the type of analysis provided by DPS: Enforce or Monitor.

    When Enforce is selected, data security is monitored on the policy and enforced through DPS. When Monitor is selected, data security is monitored on the policy, but not enforced, and results are logged.

  3. The default selection for DPS fallback behavior is Allow. This cannot be changed. In the event of a DPS timeout or other error, all email messages are allowed.
  4. Click Save.