Data Loss Prevention (DLP) in Exchange 2013

Data Loss Prevention (DLP) is a mechanism introduced in Exchange 2013 to prevent accidental or malicious disclosure of information via email message. Built-in DLP solution in Exchange 2013 scan message header, message body and attachment based on DLP rule by the transport agent. There are certain conditions applied in Exchange 2013 DLP.

Notify Only Policy

The following conditions can be used:

  • The recipient is
  • The recipient is located
  • The sender is
  • The sender is a member of
  • The sender is located

The following actions can’t be used:

  • Reject the message and include an explanation
  • Reject the message with the enhanced status code of
  • Delete the message without notifying anyone

Block Message Policy

  • Block the message, but allow the sender to override and send
  • Block the message.

To add a notify only DLP policy:

  1. Go to Exchange Administration Center, Go to Compliance management > Data loss prevention
  2. Then go to Policies, Select Edit
  3. On the Edit DLP policy page, select Rules.
  • To add Policy Tips to an existing rule, highlight the rule and select Edit.
  • To add a new blank rule that you can fully customize, select Add or plus sign and then select Create a new rule .
  1. Select plus sign, select the sensitive information types, select Add, select OK, and then select OK.
  2. In the Do the following box, select Notify the sender with a Policy Tip, and select an option in the Choose whether the message is blocked or can be sent drop-down list, and then select OK.
  3. If you want to add additional conditions or actions, at the bottom of the window, select More options.
  4. In the Choose a mode for this rule list, select whether you want the rule to be enforced. We recommend testing the rule first.
  5. Select Save to finish.

To add a block message DLP policy:

  1. In the Exchange Administration Center, go to Compliance management > Data loss prevention.
  2. Select desired policy> Click Edit .
  3. On the Edit DLP policy page, select Rules.
  • To add Policy Tips to an existing rule, highlight the rule and select Edit .
  • To add a new blank rule that you can fully customize, select Add .
  • To add an action that will reveal a Policy Tip, select More options and then select the Add action
  1. From the drop down list, select Notify the sender with a Policy Tip and then select Block the message.
  2. Select OK, then select Save to finish modifying the rule and save your changes.