Decide which data-related actions to record.
In Protection > Auditing, you can configure which data-related actions will and won’t be recorded by Safetica and for whom. The results of auditing are displayed in the Data section and can help you facilitate the implementation of protection policies.
You can enable/disable auditing for:
- Applications – Safetica records activities performed in applications.
- Devices – Safetica records the connection/disconnection of USB storages (USB drives, external drives, etc.).
- Emails – Safetica records all email communication. The visibility of certain email-related records depends on the license you purchased.
- Files – Safetica records file operations performed by users (opening files, sending files, etc.).
- Print – Safetica records printing
- Websites – Safetica records web browsing.
Example: If you decide to enable Files in an auditing policy, Safetica will record all file operations (such as when a user opens a file or sends a file). If you decide you want to disable file audit only for the Development team and keep it enabled for the rest of the company, you can create an “exception policy” – with file audit disabled for Development. Do not forget to place the exception policy above the general one in the policy list.
Learn how to create a policy here.
Read next:
Data classification in Safetica ONE 11