You know where your data is. You have labelled it. Now how do you stop it leaving?
In Episode 3, Luke and Johnny break down Data Loss Prevention in Microsoft Purview - what it actually does, how to build policies that work, and why jumping straight to enforcement is the fastest way to lose stakeholder trust.
We cover:
- The three building blocks of every DLP policy: location, conditions, and actions
- Why you should separate policies by workload instead of cramming everything into one
- Sensitive information types vs sensitivity labels as policy conditions - and when to use each
- Simulation mode - the single most important step before you enforce anything
- Policy tips, user education, and override justifications
- Endpoint DLP and browser-level protection for data leaving via desktop apps and the web
- DLP and Copilot - what happens when AI interacts with labelled content
- New features: posture reporting, DLP triage agents, and adaptive protection
- The crawl-walk-run approach to going from visibility to enforcement without breaking anything