Data Loss Prevention Actions

When OfficeScan detects the transmission of data identifiers, it checks the DLP policy for the detected data identifiers and performs the action configured for the policy.

The following table lists the Data Loss Prevention actions.

Table 1. Data Loss Prevention Actions





OfficeScan allows and logs the transmission


OfficeScan blocks and logs the transmission

Additional Actions

Notify the client user

OfficeScan displays a notification message to inform the user of the data transmission and whether it was passed or blocked.

Record data

Regardless of the primary action, OfficeScan records the sensitive information to <Client installation folder>\DLPLite\Forensic. Select this action to evaluate sensitive information that is being flagged by Data Loss Prevention.

As a security measure, clients do not send recorded sensitive information to the server.

Recorded sensitive information may consume too much hard disk space. Therefore, Trend Micro highly recommends that you choose this option only for highly sensitive information.