Creating a DLP policy to protect content with HIPAA-protected data detected
In this chapter, we'll be utilizing the Microsoft 365 compliance admin center to create a DLP policy that detects HIPAA-protected content, warns users about sharing the protected content, and blocks people from outside the organization from accessing it. It will also provide users with the opportunity to override for false positives (HIPAA-protected content detected but not actually present) or with business justification.
You should be a global or compliance administrator to complete this recipe.
How to do it…
- Go to the Microsoft 365 compliance center at https://compliance.microsoft.com.
- Click Show all from the left navigation menu.
- Select Data loss prevention:
- Click Create policy: