• IT@UC Knowledge Base

 Box at UC DLP FAQs

 Frequently asked questions for the Box at UC - Data Loss Prevention functionality.

1.   What is DLP?
Data Loss Prevention (DLP) is a means by which the university protects access to data that has been classified as Restricted. For more information about data classification, please reference the Office of Information Security’s
Data Classification Chart.


2.   How does DLP Apply to Box?
The DLP software will automatically monitor the folders of Box@UC accounts for data classified as Restricted per the
Data Protection Policy. If Restricted data is identified by the DLP software, the file will be automatically moved to a folder that is authorized to store Restricted data.


3.   Where can I store Restricted data in Box?
Folders that have “Compliant” tags are approved to store Restricted data.


4.   How is Restricted data flagged and moved?

      When Restricted data is discovered in a folder not designated as Safe for Restricted Data, it is moved to the folder designated safe for Restricted data.  Please review this link for more details.


*Please note: An email will be sent to the owner of the file, and a breadcrumb file will be left in the original location explaining why the file was moved as well as steps to take and resources to contact for further questions.




5.   With whom can I share files?

Files containing Restricted data may only be shared in accordance with your departmental policies and the Data Protection Policy.. All other files may be shared with anyone. Additional restrictions pertaining to export controlled and research data prohibit the sharing of such data in any form. Please contact the Office of the Director of Privacy if you have questions relating to export controlled or research data.


6.   What requirements must be met for me to share Restricted data with another Box at UC user?

Both of you need Box@UC accounts, and files with Restricted data can only be placed in folders marked as “Compliant”.


Box@UC relies on you to determine if Restricted data should be shared (and with whom in compliance with the Data Protection Policy). Each folder in Box lists the people able to access the files in that folder. Before placing a file in any folder, it is important that you verify all the collaborators in the folder are appropriate.




 7.  Folder Structure

There are two categories of folders: Folders that are authorized to store Restricted data and folders that are NOT authorized to store Restricted data, referred to as Shared folders.


Shared Folders may be shared with people inside and outside of the University of Cincinnati community but may not contain Restricted data. If Restricted data is discovered in any of these folders, it will be moved to your folder that is authorized to store Restricted data.



If you have any further questions or need any assistance, please contact the IT@UC Service Desk at (513)556-HELP(4357) or via email at: HelpDesk@uc.edu

Rate this article - 1 to 5 Stars
Note: you must be signed in to use this feature