We are pleased to announce that DLP End-User Email Notifications are now Generally Available (GA). This new feature ensures that end-users are promptly notified when they send out sensitive data or when their cloud-hosted files violate the organization's data security policy.
How are email notifications configured?
Setting up the DLP Email User Notification is quite straightforward using the new “User Notifications” section of the DLP policy available for both Real Time and SaaS API rules. It provides the option to either use a built-in default email template or customize one of their own.
What capabilities does the custom email feature offer?
You can personalize both the subject and body of the email in any preferred language. The email body can include both freeform text and a range of event details. These include detected data classifications, rule name, detection timestamp, and more..
How long does it take for an email notification to be delivered?
An email notification is sent out within about 5 minutes after a violation has been detected.
Will individual emails be sent to end-users for each separate violation?
Instead of sending separate emails for each violation, the system will accumulate all policy violation events for each user using the same email template every 5 minutes. These violations will then be sent out in a single email.
This email notification will include a CSV file attachment detailing all the events, with the details of the first event also included in the body of the email.
Where can I find more information?
For instructions on how to set up email user notifications, including customizable email templates, please refer to our DLP rule creation documentation:
Add a SaaS API Rule to the Data Loss Prevention Policy
Add a Real Time Rule to the Data Loss Prevention Policy