COMPLIANCE MANAGEMENT IN OFFICE 365 DATA CLASSIFICATION An important first step to achieving compliance is to classify your data with labels. These labels can then be used to apply specific retention or protection policies in Office 365. Some common scenarios may include: • Tax forms that need to be retained for a minimum period of time • Press materials that need to be permanently deleted when they reach a certain age • Competitive research that needs to be both retained and then permanently deleted • Work visas that must be marked as a record so that they can’t be edited or deleted Labels can be applied manually by users, automatically based on policy, or applied by default to a document library. It is important to note that each document or email can only have a single label at a time. Users can override labels manually, and any manually labeled document will not be overwritten by an automatic policy. Labels can also be used to “classify as a record,” and that content will not be able to be modified. You can publish different labels to different user sets with multiple label policies. Enable people in your organization to apply a label manually to content in Outlook on the web, Outlook 2010 and later, OneDrive, SharePoint, and Office 365 groups. Users often know best what type of content they’re working with, so they can classify it and have the appropriate policy applied. 1 2 Office 365 gives organizations a broad range of tools for granular compliance management across all the Office 365 workloads. There are toolsets for all your usual compliance tasks such as identifying the data, and applying a classification label and a protection policy (if required). These toolsets also provide detailed reporting for any changes to protection policies or end user file access. This eBook covers a few major sections of the Security & Compliance Center in Office 365,including data classification and governance policies, data loss prevention, and threat management.threat management.