Data Loss Prevention Policies Overview

In order to secure company data, your company may choose to put Data Loss Prevention policies in place that restrict what you can and can’t do in Venn's Blue Border™.

To learn about available policies and how to configure them as a Company Manager, see Available Data Loss Prevention (DLP) Policies.

What are Data Loss Prevention Policies?

Data Loss Prevention Policies are policies that companies can enable that restrict what their users can do in Blue Border. Companies choose to put these policies in place in order to prevent company information and files with sensitive data from being lost, misused, or accessed by unauthorized users.

View Computer Data Loss Prevention Policies

On your Windows or Mac computer, every application that you have open in Blue Border will have a round Badge on the side of the application window when the window is active. If you click on the Badge, you can see a list of your company’s Desktop Data Loss Prevention policies.

Policies with a lock to the left of them are current restrictions that your company has in place.

LocalZone Badge_DLP Full.png

These policies only apply in Blue Border.

Computer Data Loss Prevention Policies

The table below provides details about each Data Loss Prevention policy available for Windows and Mac in Venn. 

This table includes all available computer Data Loss Prevention policies in Venn. Your company may not have implemented all of the checks below.
Policy Description Setting

Browser Uploads

Controls the ability to upload files to the internet in Blue Border browsers.

Locked: You are not allowed to upload files unless your admin has added the domain to an exception list.

Unrestricted: You are allowed to upload files.

Move and Paste

Controls the use of drag/drop and copy/paste to move data out of Blue Border.

This policy does not restrict the ability to drag/drop and copy/paste to move data into Blue Border.

Locked: You are not allowed to move data outside of Blue Border.

Unrestricted: You are allowed to move data outside of Blue Border.

 

Network Access 

Controls the routing of Blue Border internet traffic through the encrypted Private Company Gateway.

Locked: Network traffic is protected by Private Company Gateway unless your admin has added the domain to an exception list.

Unrestricted: Network traffic is not protected by Private Company Gateway.

Printing

Controls printing from applications in Blue Border.

This policy does not restrict the ability to print to PDF.

Locked: You cannot print.

Unrestricted: You can print to any printer.

Browser Downloads

Controls where files are downloaded from the internet in Blue Border browsers. 

Locked: Saved to your Secure Downloads folder.

Unrestricted: Saved to default location.

Work File Access

Controls where files are saved in Blue Border applications. 

Locked: Saved to Workplace Drive.

Unrestricted: Saved to any location on the device.

Screen Sharing & Capture

Controls the use of screen sharing and screen capture tools for applications running in Blue Border. 

This policy is only available on Windows.

Locked: You cannot share any application screen unless your admin has enabled you to share with a business justification.

Unrestricted: You can share any application screen. 

View Mobile Data Loss Prevention Policies

  1. Open the Workplace app on your mobile device.
    • On Android, Swipe up from the bottom of your screen, tap the Work tab, and tap to open Workplace.

      Android_WorkProfile_Workplace.png

    • On Apple, locate and tap to open the Workplace app.

      Workplace App.png

  2. Tap Policies at the bottom of the screen, then tap to open the DLP Policy tab.Mobile_DLP Policies-portrait.png

Mobile Data Loss Prevention Policies

The table below provides details about each Data Loss Prevention policy available for Android and Apple devices in Venn. 

This table includes all available mobile Data Loss Prevention policies in Venn. Your company may not have implemented all of the checks below.
Policy Description Settings
Passcode

Controls the ability to access the device without a passcode enabled.

Locked: Requires a device to have a password enabled. For Apple devices, you will be required to set up an alphanumeric passcode with a minimum of 6 characters.

Unrestricted: Does not require a device to have a password enabled.

Network Access

Controls the routing of managed application internet traffic through the encrypted Private Company Gateway.

Locked: Restricts the network used my managed applications to the Private Company Gateway.

Unrestricted: Network traffic is not restricted to the Private Company Gateway.

Copy and Paste

Controls the use of copy/paste to move data out of managed applications.

This policy does not restrict the ability to copy/paste to move data into managed applications.

Locked: Restricts the use of copy and paste to move data out of managed applications.

Unrestricted: Use of copy and paste is not restricted.

Restrict Files to Managed Applications

Controls how files saved to Workplace Drive can be accessed.

This policy does not restrict the ability to copy or move files to managed applications from other unmanaged locations.

Locked: Restricts access to the Workplace Drive to managed applications.

Unrestricted: Work files can be accessed from any location.

Screen Capture

Controls the use of screen capture tools, such as screen recording or screenshots, for managed applications.

Locked: Restricts use of screen capture tools for managed applications. For Apple devices, screen capture is disabled for the entire device, including personal applications. 

Unrestricted: Use of screen capture tools is not restricted.

Was this article helpful?