New OneDrive configuration helps protect sensitive information

DLP OneDrive Web

UAB IT is implementing a new configuration in OneDrive and SharePoint Online to better alert you if Restricted information is stored in your files. The new configuration will be launched May 25.

Data that is classified at UAB as “Restricted” — such as Social Security and credit card numbers — is not permitted to be stored in the cloud.

The new data loss prevention, or DLP, configuration will help prevent unintended exposure of Restricted data that could result from document sharing.

DLP will scan OneDrive and SharePoint online documents to determine those that contain Restricted data such as Social Security numbers or credit card numbers. SSNs and credit card numbers are classified as Restricted/PHI under the UAB Data Classification Rule.

If one of your files contains such information, the file will be flagged and you will see a new icon — a red circle indicating access is prohibited. Access will be restricted to the owner of the file and the last person who modified the file.

If you have a file flagged as having restricted information, you should:

  • Delete the file from OneDrive or SharePoint Online
  • Remove the restricted data from the file; or
  • Migrate the file to local, on-premise file storage. AskIT can help you with on-premise storage.

Learn more about how data loss prevention works in OneDrive and SharePoint here.

Learn more about how to remediate Restricted data in your OneDrive files here.

If you have any questions or problems with DLP, please contact AskIT at 205-996-5555, askit@uab.edu or uab.edu/askit.

Last modified on May 10, 2018