Office 365 Advanced Data Governance overview (GDPR)


Coming up, we look at updates to the Security and
Compliance portal in Office 365. Specifically, Advanced Data Governance. I’m going to show you advances in knowing and classifying your data. Cloud intelligence for proactive policy recommendations based on your criteria. Data retention to determine the high-value data to keep and the obsolete data you can confidently delete. And finally, default alerts that ensure
good governance on your behalf. As data in your organization continues
to grow at an exponential rate, much of it in an unstructured manor. We want to give you confidence
and understanding in knowing that data so you can determine the right
actions for your organization. This all comes together with
Advanced Data Governance in the security and compliance center in Office 365. Whether you’re new to data management or an expert, our focus is on simplifying the experience while maintaining the granularity of controls that you need for advanced governance if you are a records or compliance officer. In this example of a healthcare company, you’ll notice immediately that I get a
comparative view of my data management practices compared to others in my industry. The system is also able to make specific recommendations relative to the data in my tenant and specific regulatory policies for my industry that Office 365 detects I have not yet deployed. Behind-the-scenes, Office 365 is able to recognize different document types allowing the system to quickly analyze data within my tenant and make recommendations on my behalf. While this view is determining the
data already within Office 365, we are making it easier for you to know
and classify all of your organization’s data. Including non-Microsoft data
that you bring to the service. This starts with analyzing your data when
you bring it to the cloud. And then becomes a question of filtering
or importing what you don’t need in Office 365 using criteria like user, age, and data type. Once the data is in, were also allowing
for more advanced management. so you can easily determine what data
you’d like to preserve and protect. Coming back to our dashboard, I can see our tax records recommendation, and i’m going to create a policy. Here, I want to customize this policy. So I choose to go to the retention dashboard. Here, I create a policy by giving it a friendly name. And I can now choose what locations across
Office 365 I want that policy to apply to. I can choose any work load within the service, or third-party data types. For example, i’m going to choose to
apply the policy to all locations. I can choose how long I want to preserve
the content or when I want to delete it. I can also specify additional options like publishing labels to allow people
to manually apply tags. To apply retention on content that
will match a keyword query, Or to apply it on content that matches
a sensitive information type. I can also upload my own document fingerprints to apply policies to those specific subsets of data. For this example, I’m going to choose
a sensitive information type. Since I’m a healthcare organization, I’m going to choose the medical or healthcare template. Here I choose the “UK Access to Medical Reports Act”. All the data within my tenant that matches the
“UK Access to Medical Reports Act”, will now have this retention policy applied to it. So these are the templates we’ve built into Office 365. You can also select your custom digital
fingerprints of document types that you previously identified as important to you. And now if you want to review a sub-set
of content at a more granular level, such that a business leader or supervisory reviewer
can manually evaluate that content. You can create a supervisory review rule in the security and compliance center. and delegate a reviewer who will tag that
content in Outlook or OWA. Now I’m going to show you built in
default system alerts That leverage cloud intelligence to
enable good governance. Here we have alerts if you have an unusual
volume of file downloads, file deletions, or file preservations and modifications. In this way, the system lets you know without any configuration on your behalf when there is anomalous governance as compared
to your regular usage of the service. These are just some of the updates to
Advanced Data Governance in Office 365. We will continue to invest in giving
you a rich window into your data and guidance and how to govern it
according to industry regulations. LIke the EU’s general data protection
regulation “GDPR”, for example. There’s much more to come including governance in-house machine learning, which will allow you to mark a small sub-set of data and extrapolate it from a much larger set. And then set policies to take action. To learn more and try these for yourself, please sign up for an Office 365 E5 preview. Thanks for watching. Microsoft Mechanics www.microsoft.com/mechanics

One Reply to “Office 365 Advanced Data Governance overview (GDPR)”

  1. Have a question about Advanced Data Governance? Ask the experts on the Microsoft Tech Community:
    https://techcommunity.microsoft.com/t5/Security-Privacy-Compliance/bd-p/security_privacy

    To find more information on Advanced Data Governance, check out this Office blog:
    https://blogs.office.com/2017/02/10/new-office-365-capabilities-helps-you-proactively-manage-security-and-compliance-risk/

Leave a Reply

Your email address will not be published. Required fields are marked *