Apparently Mac OS is not currently supported by Sophos Endpoint DLP. We have a decent number of Mac laptops in use in our environments and have a need to protect PII. Please consider building out the DLP module to support the Mac OS.

When customer to setting data control policy , only can setting removable device.
But mobile can't set in the policy.
So we want to add mtp/ptp device to control.

I created a USB DLP policy to allow, but track all USB transfers. Transfers are tracked locally on the end point, but the log data is not transferred to reporting in the sophos admin console. It would be incredibly useful to see the same information that is tracked in the local log in the admin console as well. Other DLP policy matches make it there, why can't these?

Sophos Data Control feature in the endpoint solution is incompatible with Secure Boot. Secure Boot is the foundation for Microsoft's Windows security stack since Windows 8. Data Control under Secure Boot blocks all USB file transfers. Many companies require DLP solutions for compliance and will likely switch products if Sophos can't find a way to work with Secure Boot.

I would like to see what Sophos saw that caused it to trigger a DLP alert. It would be nice to have detailed visibility on what was detected. A SS#? A PAN? A Date of Birth? That way we have concrete evidence of what was detected so we may approach the end user with solid data rather than a general name of the policy.

It would be nice if there was an optional value that could be set to allow the ability to save files opened over a network share or USB device back to the original device without requiring the need to save locally and move the saved file back to the network/USB resource when DLP is enabled. Currently, on Windows systems, it appears this can only be done when Windows Indexing is disabled.

Please add new video regarding Generating logs for MKV , Video and Audio Extensions

Please create the ability to change RMS from using a self-signed certificate to being able to import a Trusted third party CA signed certificate.

should be granular not only by category but file file extension, should have a check box for selection

Currently Microsoft Edge is not included as a destination within the Data Control policy for the on-premise Enterprise Console.

Create DLP rules, policies, and exceptions based on files´ path information.

I have notice that pretty much all our downloads as well as uploads are captured as events by the DLP engine when setting policy for web browsers.

This can mean the controlled items list becomes huge and the central events log is way to big to get anything meaningful in terms of data leaving via web.

All the data loss tools I've used generally only capture outbound events, as this is the nature of Data Loss Prevention.

When downloading a file from browser with data control policy. There is an alert and logging on Data Events. (example: blocking of spreadsheet with content rule)
This happens on both file rule and content rule.

Also, the log event's source path and destination type is interchanged.

Data Control - Add extension list for each File Type Group

We would like to request to display file extension for each file type group on Sophos Central.
This feature is available in Sophos SEC but when using cloud it is not showing.
Thanks.

Is there a chance to build data control rules based in Mexican requirements. Have you grabbed some based in personal data ID numbers (RFC, CURP, INE, Social Security, etc) as well as invoicing xml/pdf standard used?

I have a DLP policy that I don't want all my Central admins to receive emails for. I want to specify which users receive emails for the DLP policy.

Currently, phone numbers will only be detected by DLP if they have "Tel" before them. It is unlikely that phone numbers will have "Tel" before them, rendering this option quite unhelpful.

When Sophos Data Control is scanning for PII, I would like the ability to disable the "The file is being scanned for sensitive data. Please wait." message. This message would cause confusion among users and unnecessarily increase call volume for my helpdesk.

We enable DLP on all desktops and web browsers however we have an internal system where we need to upload files to using a web browser. We would like to exclude URL's based on a list so these can be sent using any browser without the DLP client kicking in and scanning the files.