Top tips to protect your remote employees with data compliance in OneDrive

Safeguard Your Data with OneDrive

Govern Intellectual Property

Data loss is non-negotiable for your business. Not only can it cost your company huge amounts of time and money—not to mention the impact on your competitive edge if certain IP is compromised—exposure of sensitive information and assets can have enormous legal and compliance implications, too. These worries are heightened by the current business climate, which is seeing more and more people work outside the protective confines of their company’s network.

Read on to learn how Microsoft 365 and OneDrive helps keep your data secure and private at the same time reducing the stress on IT during compliance or litigation issues.

Data retention

Due to compliance and/or legal requirements, your organisation might be obligated to keep content for a certain period of time. Data retention in OneDrive is an effective tool for managing and governing the lifecycle of your data. Admins can set global retention policies on all organisational data as well as granular policies on critical users or content, like tax forms, press materials, competitive research, or work visas. They can also implement retention labels for crucial content to impose rules based on set classifications. Admins can automatically apply retention labels to specific types of information or empower their users to manually do the same.

Data retention can also reduce risks associated with litigation and security breaches. If a user leaves your organisation, files that are subject to a retention policy will be preserved for the duration of that policy with their respective sharing permissions intact. Similarly, admins can set policies that permanently delete old content when it’s obsolete or redundant to further minimise the chance of malware.

Lastly, data retention policies and labels support record management for managing regulatory, legal, and business-critical records across your corporate data.


Admins can search for content related to a case using specific keywords and then export or place a hold on that content. Similarly, eDiscovery holds can be placed on entire OneDrive accounts being investigated. Analysing search results using Advanced eDiscovery, which integrates machine learning, predictive coding, and text analytics, admins can further reduce the costs and challenges associated with sorting through large quantities of unstructured data.

As the business world transitions into a new world of work, protecting company data stored in the cloud becomes more important than ever.

With malware protections and data retention in OneDrive, admins can help ensure the safety of critical information—even when users are working outside the office. The same is true for legal compliance: as an admin working remotely, you can still find and preserve cloud-based data to save yourself more time and your company more money.


Ransomware attacks have increased dramatically in recent years, causing significant economic damage in their wake. And there’s no sign that trend is slowing: by one estimate, ransomware will cost the global economy £19 billion in 2021. Microsoft 365 and OneDrive are designed to help protect your data from such attacks. If your company is infected by ransomware, Windows Defender on Windows 10 and OneDrive will detect and notify you of the attack; provide steps for cleaning your device; and, help you recover lost data with Files Restore. Files Restore reinstates your entire OneDrive to a previous time within the last 30 days. This feature can also be used if OneDrive files and folders get deleted, overwritten, or corrupted.

Drive Awareness and Insights

Having the right tools is a good first step toward protecting your company’s confidential content. But knowing how users and other admins interact with that content adds an extra layer of security and control. Microsoft 365 offers detailed audit logs and reports that let you trace OneDrive activity at the folder, file, and user levels. That kind of transparency helps protect data while giving your admin team valuable user insights that could influence future IT decisions.

Audit logs and reports in Microsoft 365 Security and Compliance Centre surface unprecedented levels of visibility into user and admin activities within OneDrive. Every user action, including changes and modifications made to files and folders, is recorded for a full audit trail.

Admins can even audit the users themselves who made those changes, helping them understand how people share, request access, and sync content in OneDrive. Audit logs help uncover admin activities in OneDrive as well, such as changing a network or device access policies. Advanced auditing capabilities add to these auditing efforts with log retention policies and the ability to retain all records for a year to enable forensic and compliance investigations.

Deploying alert policies is another crucial step for monitoring activities performed by OneDrive users. These alerts notify admins when users share a file externally, assign access permissions, or create an anonymous link. Admins can define the alert conditions and policies that will best help them investigate, contain, and respond to any risks of data leakage.

In addition to custom settings, Microsoft 365 Security and Compliance Centre also provides default alert policies for OneDrive, such as:

  • an abnormal volume of files deleted from a user’s OneDrive in a short duration of time
  • a high volume of malware detected in files located in OneDrive accounts
  • a large number of files shared externally
  • unusual amount of activity (e.g., accessing, downloading and deleting files) performed on the externally shared files by users outside of your organisation

If you have added retention labels to classify data, you can easily verify that they’re being applied as intended. Extensive reports ascertain the label activity for files and folders in OneDrive for the past 30 days and include details like which user applied, changed, or removed labels to exactly which file or folder. Also, label analytics can help you locate which labels are being used most and where they are being applied. These capabilities recently made generally available under the ‘know your data’ scenario.

Auditing insights are yet another tool for maintaining data security as companies consider their work-from-home policies. Using audit logs and reports, admins can quickly understand how users and other admins are interacting with their OneDrive content and pinpoint unusual activities before it becomes a threat.

Maintain ownership and control

Your data is yours alone—even if you’re keeping it in the Microsoft Cloud. We take seriously our responsibility as a custodian of your content and have implemented a series of protocols that keep information private. From Customer Key to Customer Lockbox, Microsoft’s privacy features to ensure you maintain control over your data in OneDrive.

OneDrive enables people to store, share, and work together on content. And that content, as well as end-user information, is owned solely by the customer with Microsoft serving only as its custodian.

Microsoft 365 provides encryption for both data at rest, such as files saved in a user’s OneDrive, and in transit, such as files being shared between users. But it also offers an added layer of security and flexibility to data at rest letting you manage the root encryption key with Customer Key.

Customer Key enables you to provide your own keys for Microsoft to encrypt data stored in OneDrive, enhancing the ability of your organisation to meet the demands of compliance requirements. You must give Microsoft authorisation to use your encryption keys. You can revoke the access to the key anytime to make the data unreadable to all, including Microsoft services.

Manage Regulatory Compliance

Business, as usual, is anything but these days. As companies move to a more flexible and remote workplace—in part because of changing times and in part because of Digital Transformation imperatives—admins need to ensure their users can access and share data no matter where it resides. They also need to keep government and industry regulations in mind.

Microsoft 365 and OneDrive together boost teamwork and innovation and guarantee easy management of data, users, and devices without straining IT resources and infrastructure costs. And with features like Multi-Geo and Information Barriers, OneDrive propels Digital Transformation in the global workforce of an organisation while simultaneously helping organisations address data residency and segmentation guidelines enforced by governments and industry regulators.

Multi-Geo helps you control where your data resides at the individual user level. Your organisation can expand its Microsoft 365 presence to multiple geographic regions and/or countries within your existing tenant without disrupting the user experience. This includes a unified sharing experience in OneDrive where features like the global People Picker and “Shared-with-me” provide a centralised list of colleagues and shared files across geographies. Content discovery and data access through mobile devices, no matter where the data resides, just works.

Multi-Geo capabilities allow each user’s OneDrive to be provisioned in or moved by an admin to a satellite location by the user’s Preferred Data Location (PDL). Individual files are then kept in that location but can be shared with users in other geographies. Admins can implement familiar policies to move data between locations; tailor access, sharing, and configuration policies for each location; and, generate reports to monitor their users and data from the Microsoft 365 admin portal. All administrative controls, like audit log search, eDiscovery, and Data Loss Prevention (DLP), are extended to a multi-geo environment.


To find out more about Microsoft 365, and how it can help protect & manage your data, while your employees work remotely, call us on 01509 410 410.