Not sure where to start with creating DLP rules for your organization? No problem.
Here is a list of commonly used rules that we can recommend, as well as instructions for how to create them.
Sensitive information (general)
A simple way to protect your organization from sensitive data leaks.
This rule will encrypt the content and attachments of every email found to contain highly sensitive information (see figure 10):
Set the rule condition (“IF”) to “Sensitivity score”Select “body” and “attachment” under the “detected in” fieldSet the score to be “equal or above” 4Set the rule result “THEN” to “Encrypt message content” and “Alert admin”
Figure 10: An example of a general rule for information sensitivity
Sensitive information + regulation compliance
If your organization is required to comply with certain privacy regulations such as GDPR, HIPAA or PCI, Trustifi has got you covered (see figure 11):
Set up a rule based on sensitivity score (same as the one in the example above)Click “AND” to add a conditionSet the additional condition (“AND”) to “Compliance”Select the relevant compliance(s) from the list
Figure 11: A rule for regulation compliance
When applied, this rule will look for all emails containing sensitive information (score of 4 or above) which is relevant to a specific regulation.
E.G – If the PCI compliance is selected, an email containing credit card information will trigger the rule, however an email containing medical information will not (medical information is covered under HIPAA compliance).
Specific sensitive information
If you are looking to monitor specific types of sensitive information, like credit card information, social security numbers, medical documents or others, setting up a corresponding rule is easy (see figure 12):
Set the rule condition (“IF”) to “Sensitivity type”Select “body” and “attachment” under the “detected in” fieldClick “Select sensitivity types” to open the listChoose which categories of sensitive content you wish to look for
Figure 12: Setting up a rule for sensitivity types
Use the search field to find the categories that are important to you (see figure 13).
You may select as many as you want, but it is recommended not to add too many, otherwise a lot of false-positive detections may occur.
Figure 13: The “Sensitivity types” selection menu