Earlier this week, Charlie described how Microsoft's new File Classification Infrastructure (FCI) enables organizations to protect data by automatically classifying files and applying policy. One of the great things about FCI is that administrators can classify files based on content and location so that the files can be intelligently protected and managed based on value. You can take this a step further with partner solutions and do more advanced things with metadata and data classification. Here are some:
Classification based on user role: Automatically classify files based on user role. For example, automatically assign a “High” classification to all the Executive user’s documents.
Classification in headers, footers, and watermarks: Automatically add visual labels to thousands of documents in the document headers, footers, and watermarks.
Data loss prevention: The File Classification Infrastructure generates classification metadata for all classified files. This metadata can be used by other applications to prevent data leakage. One of the easiest DLP checks is to check the classifications on documents attached to email, and ensure that the email classification is at the same level or higher. What does that mean? It means you can easily prevent internal files from leaving the organization through email.
So a confidential document is easily prevented from being accidentally sent out. Don’t just watch it leave - stop it before it even leaves the desktop. This can be incredibly useful if you have Personally Identifiable Information (PII) or other sensitive info. For example, if a document has been classified as PII, you can ensure that the email is also classified as PII and not sent out inadvertently.