Posted by Michael Skoupý, Last modified by Štěpán Horký on 11 June 2019 01:37 PM
In versions 8.3 and above, Safetica DLP offers configurable behavior of how clipboard content is handled for selected data category types.|
For data categories defined by existing classification or context rules you can select between moderate and strict clipboard modes. These modes affect how strictly the user experience when working with clipboard is restricted. Clipboard content is evaluated based on built-in heuristics, and the behavior might differ when the content is considered potentially risky - strict mode means that fewer user actions are allowed, hence more maintenance might be needed from the administrator's side to troubleshoot problems.
These modes are not available for data categories defined by sensitive content - for these, clipboard is restricted when specified sensitive content is found in it.
a) Moderate clipboard modeThis mode is default and recommended, as it enables the user to work freely.
In moderate mode, the data category does not spread via clipboard, which means no unexpected DLP policies and restrictions are applied to additional applications or data. DLP restrictions related to clipboard are only applied when risky content is being copied. Content such as a simple number, a single e-mail address or other contact detail is not considered risky, and will therefore be allowed.
b) Strict clipboard modeThis mode is rather restrictive and suitable when strict protection is required, even at the expense of user experience.
In strict mode, the data category spreads via clipboard when copying risky content - this may lead to unexpected DLP policies and restrictions applied to additional applications or data. DLP restrictions for clipboard use are applied at all times, regardless of what is included in the clipboard.
Clipboard behavior overview