Using DLP Module data categories, you can create DLP policies (hereinafter also referred to as policies).
A policy is a collection of application settings that provide protection against data leaks. The policy defines the conditions on which users can handle confidential data, as well as actions that must be taken by the application when possible data leakage is detected.
Kaspersky Security applies policies to outgoing messages that are covered by the scope of those policies. When applying policies, Kaspersky Security searches messages for data from the categories based on which the policies were created.
The policy scope includes:
The application uses policies to scan the content of messages and attachments. The application detects information that may indicate a data leak in message text and file content.
Kaspersky Security scans attachments of the formats enumerated in the Appendix for data leaks. The application does not scan files of other formats.
The application recognizes the file formats based on their content and not their extension. The application therefore scans files of the enumerated formats even if the file extension does not match the format.
The application scans the contents of attached archives down to the 64th nesting level. The application does not unpack or scan the contents of archives at deeper nesting levels.
A policy also defines actions to be taken by the application. The application performs these actions on messages found to contain confidential data.
Several policies with different scopes and different sets of actions to be taken on messages can be created on the basis of a single data category.
New policies and changes made in the policies are applied to all security Servers with the DLP Module installed within 30 minutes.