RSA Data Protection (DLP) modules provide unprecedented visibility into the location and usage of sensitive data such as credit card data, Personally Identifiable Information (PII), intellectual property and other corporate data. Once the modules have located the data, they can alert and educate designated personnel and enforce controls based on your customised policy.
It consists of three modules which are managed through a centralized management console and build-in incident management workflow and include data loss prevention for datacentres, network and end-points.
DLP Datacentre supports automated data discovery on storage platforms including Microsoft Windows file servers, UNIX file servers, NAS/SAN, Microsoft SharePoint, Lotus Notes, databases, and Windows PC local drives. It leverages unique technologies such as grid-based scanning and temporary agents to efficiently scan large storage repositories without the need for dedicated hardware.
DLP Network monitors all network communications for sensitive data, actively educates end users, and enforces controls in real time to prevent unauthorized transmissions. It covers various channels of network communications including corporate email, web and social media, IM, encrypted traffic, email from smartphones and tablets, FTP, and generic TCP.
DLP Endpoint protects sensitive data on PCs by actively monitoring and enforcing controls on end user actions such as print, write to CD/DVD, copy to USB, save to network file share, and transfer via webmail and social media. In addition, DLP Endpoint can scan all local drives for sensitive data at risk, whether on physical laptops or virtual desktops.