1. Home
  2. Docs
  3. General
  4. DLP rules & policies guide
  5. Common and recommended rules

Common and recommended rules

Not sure where to start with creating DLP rules for your organization? No problem.

Here is a list of commonly used rules that we can recommend, as well as instructions for how to create them.


 

Sensitive information (general)

A simple way to protect your organization from sensitive data leaks.

This rule will encrypt the content and attachments of every email found to contain highly sensitive information (see figure 10):

  • Set the rule condition (“IF”) to “Sensitivity score”
  • Select “body” and “attachment” under the “detected in” field
  • Set the score to be “equal or above” 4
  • Set the rule result “THEN” to “Encrypt message content” and “Alert admin”
An example of a general rule for information sensitivity

Figure 10: An example of a general rule for information sensitivity


 

Sensitive information + regulation compliance

If your organization is required to comply with certain privacy regulations such as GDPR, HIPAA or PCI, Trustifi has got you covered (see figure 11):

  • Set up a rule based on sensitivity score (same as the one in the example above)
  • Click “AND” to add a condition
  • Set the additional condition (“AND”) to “Compliance”
  • Select the relevant compliance(s) from the list
A rule for regulation compliance

Figure 11: A rule for regulation compliance

 

When applied, this rule will look for all emails containing sensitive information (score of 4 or above) which is relevant to a specific regulation.

E.G – If the PCI compliance is selected, an email containing credit card information will trigger the rule, however an email containing medical information will not (medical information is covered under HIPAA compliance).


 

Specific sensitive information

If you are looking to monitor specific types of sensitive information, like credit card information, social security numbers, medical documents or others, setting up a corresponding rule is easy (see figure 12):

  • Set the rule condition (“IF”) to “Sensitivity type”
  • Select “body” and “attachment” under the “detected in” field
  • Click “Select sensitivity types” to open the list
  • Choose which categories of sensitive content you wish to look for
Setting up a rule for sensitivity types

Figure 12: Setting up a rule for sensitivity types

 

Use the search field to find the categories that are important to you (see figure 13).

You may select as many as you want, but it is recommended not to add too many, otherwise a lot of false-positive detections may occur.

The “Sensitivity types” selection menu

Figure 13: The “Sensitivity types” selection menu

Was this article helpful to you? Yes 1 No

How can we help?