Microsoft Office Sensitivity labels are a way to classify and protect sensitive data. They help manage and secure information by marking it with labels that indicate its sensitivity level. With this advanced feature in the GajShield firewall, you can configure policies to allow, monitor, or block documents based on their assigned sensitivity labels. By leveraging sensitivity labels, organisations can enforce precise control over sensitive information, ensuring it is safeguarded against unauthorised access and misuse. This robust functionality empowers users to enhance data security, maintain regulatory compliance, and prevent data breaches effectively

Utilising sensitivity labels in Microsoft documents combined with GajShield's DLP scanning provides significant advantages, particularly in strengthening data security and ensuring compliance with regulatory standards. This integration enables seamless classification, protection, and monitoring of sensitive information, ensuring that critical data remains secure while adhering to organisational and legal requirements. Here are some key benefits:

• Sensitivity labels empower organisations to classify and tag documents according to their sensitivity levels, such as Confidential, Internal Use Only, or Public. This structured approach ensures consistent handling of information, enabling robust data protection and compliance with organisational policies and regulatory standards.
• Sensitive data is effectively contained within the organization and prevented from entering unauthorized zones, significantly mitigating the risk of data breaches and ensuring compliance with data protection policies. This proactive approach safeguards critical information from external and internal threats. 
• Sensitivity labels assist organizations in achieving compliance with regulations such as GDPR, HIPAA, and CCPA by ensuring that classified data is consistently identified, labeled, and handled in accordance with legal and regulatory requirements. This systematic approach supports robust data governance and minimizes the risk of non-compliance.
• Organisations can detect and mitigate risks caused by inadvertent sharing or misclassification of sensitive data.
• Generate real-time alerts when sensitive data is identified, enabling faster response to potential threats.

How to Use Microsoft Office Sensitivity Labels with GajShield

To create policies based on Microsoft Office Sensitivity Labels, you need GajShield firmware version 4.44 or later and an active DLP license. Follow these steps to integrate sensitivity labels into your firewall policies:

1. Define DLP Policies in the Firewall:

   • Create Data Loss Prevention (DLP) policies in the GajShield firewall tailored to your organization’s needs.
   • Leverage Microsoft 365 Sensitivity Labels to classify and identify sensitive data effectively.
   • Example: Define a policy to monitor and block files labeled as "Confidential" when an attempt is made to share them outside the organization.

2. Apply Policies to Firewall Rules:

   • Integrate the created DLP policies into specific firewall rules.
   • Configure these rules to enforce actions such as:
     • Blocking: Prevent sensitive data from being transmitted to unauthorized destinations.
     • Monitoring: Log and review attempts to share sensitive data for audit and compliance purposes.

3. Inspect and Enforce Policies on Sensitivity-Labeled Data:

   • When a file, email, or document with a sensitivity label (e.g., "Confidential") is transmitted, the firewall inspects the traffic in real time.
   • If the transmission matches the defined DLP policy, the firewall blocks the action and generates detailed logs for analysis and reporting.

By combining Microsoft Office Sensitivity Labels with GajShield’s advanced DLP capabilities, organizations can ensure robust protection of sensitive data, prevent unauthorized sharing, and maintain compliance with regulatory standards.

For further information, please contact our support team at This email address is being protected from spambots. You need JavaScript enabled to view it..