1. The webinar discusses making a case for data classification in organizations and introduces RightsWATCH, an automated data classification tool.
2. Early user-driven data classification tools required in-depth policy understanding and were complicated, resulting in classification errors and incomplete compliance.
3. RightsWATCH represents an upgrade as an automated, policy-driven system that streamlines the user experience and improves data security, compliance, and protection.
Organizations of all sizes are challenged to protect a growing quantity of valuable digital information against careless mishandling and malicious use. The increasing incidences of information theft underscore the need for better protection of digital information.
Implementing a solid Information Classification Policy (ICP) is the first step to protecting sensitive information.
A growing list of legislative and regulatory requirements adds to the ongoing task of protecting digital files and information
Intricate and unclear data classification strategies that aren’t understood by users and end up never being used in the real world; PLUS the classification requirements, many times, don’t take in consideration the business impact and the volume of legacy data present in the organization.
Organizations need to control and protect their sensitive and confidential information against information leakage, by dynamically applying a pre-defined Information Control Policy to all types of unstructured information (emails, documents, spreadsheets, presentations, etc.) as that information is created.
Data classification should be established by setting a core set of principles regarding the proper use, handling and applicability of various protection profiles for each data category.
To successfully implement a policy-driven classification process, your organization must know it’s data, and for that it must answer a few questions…
There are 2 main methods to achieve data classification:
Policy-driven: that relieves the user from the workload and overhead of having to know, understand and apply corporate policies, while at the same time increasing user and organizational awareness of the value and sensitivity of the data and ensuring compliance.
User-driven: When the user is able to make data classification decisions or override automatic classification if corporate policy allows it.
RightsWATCH enables you to have the flexibility to combine both methods according to your company’s security policies.
For example, corporately defined policy rules can overwrite user decisions and choices if your company chooses to.
To finalize, let me ask you to participate in a short 3 question quiz:
- So, want we are asking is “Which type of rule are we applying in these use cases?”