Email Data Loss Prevention (DLP) For Google Workspace
G Suite, one of the leading cloud-based messaging platforms, is currently being used by over 6 million businesses worldwide. The G Suite comes in three variants for its customers i.e., Basic, Business, and Enterprise. Most of the advanced security controls come in the Enterprise version of G Suite. It becomes an impediment for G Suite Basic and Business customers to implement the security controls, which are essential from a data security, compliance, and regulation perspective. CloudCodes becomes a perfect solution for G Suite Basic and G Suite Business customers as the security controls required by the organization to overcome the security challenges are fulfilled. One such feature is Gmail DLP i.e Email DLP for G Suite provided by CloudCodes security solution.
CloudCodes Email DLP provides an easy and straightforward solution that can be configured within hours on the customer G Suite domain. CloudCodes act as an Email Gateway for the G Suite domain. The outgoing emails are redirected to the gateway for the configured users. CloudCodes DLP solution allows IT to configure various policies for different sets of users based on business and compliance requirements.
CloudCodes Email DLP For G Suite Provides Capabilities to Track Email for
- Email is sent to personal domains: in case users within the organization are sending emails to recipients having their own id such as gmail.com, outlook.com, aol.com, etc.
- Email sent to outside domains: the IT can define the set of areas that represent domains with whom the users within the organization should not communicate. Once identified, the rule can be configured to track emails sent to those domains.
- An email is containing keywords: the IT can use the pre-defined standard policies such as PII, PHI, or define its own set of regular expressions or keywords. The DLP framework can track emails that match these defined regular expressions, compliances, or keywords.
- An email contains restricted attachments: the IT can define a set of document types that can be labeled as restricted attachments. The DLP framework will track emails having these defined types of accessories.
The DLP framework provides well defined remedial measures that allow corrective actions when the event mentioned above occurs. These are
- Reject Email: in case the conditions have met, the email is rejected, and a notification is sent to the sender.
- Track: the IT can track the email flow between the sender and recipients on the DLP rules.
- Notify Reporting Manager: a notification will be sent to the sender’s reporting manager on the DLP rules
- Notify Super Admin: a notification will be sent to the CloudCodes super admin.
CloudCodes will be adding the following features in the coming months for Gmail DLP.
- Approval workflow instead of rejecting emails will allow the sender to brief the respective stakeholders about the reasons for sending such emails. It will also help the customer to handle false positive emails.
- Send encrypted emails to recipients. It will allow IT to control emails sent to outside domains in a much better manner.