A feature in Outlook came up in ours: in caching mode, it keeps an unencrypted copy/cache of your mail, contacts etc on the PC's hard disk. So, we ended up limiting the Outlook client to only those computers with full disk encryption. Hope that helps, Regards, Simon >>> On 05/10/2018 at 09:46, in message <[log in to unmask]>, Lynn Wyeth <[log in to unmask]> wrote: > Friday question. > > Has anyone moved to Office 365 yet and done a DPIA, particularly OneDrive? > > I'm looking at the issue that Microsoft seem to default to only having a > 90-day audit trail which covers security, sharing and data access events. > > If a staff member ignores the Acceptable Use Policy and uses OneDrive to > send huge amounts of sensitive personal data to themselves elsewhere, and the > data controller does not discover it within 90 days, I presume there is no > way of proving what they have done and have lost any evidence for data > breaches, disciplinaries, court cases etc. > > Anyone using Office 365... have you paid extra to have a more extensive > audit trail? Does anyone know more about the tech behind this pls? > > Lynn > > ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ > All archives of messages are stored permanently and are > available to the world wide web community at large at > http://www.jiscmail.ac.uk/lists/data-protection.html > If you wish to leave this list please send the command > leave data-protection to [log in to unmask] > All user commands can be found at > https://www.jiscmail.ac.uk/help/subscribers/subscribercommands.html > Any queries about sending or receiving messages please send to the list > owner > [log in to unmask] > Full help Desk - please email [log in to unmask] describing your > needs > To receive these emails in HTML format send the command: > SET data-protection HTML to [log in to unmask] > (all commands go to [log in to unmask] not the list please) > ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ -- Mae'r e-bost hwn ac unrhyw ffeiliau atodedig yn gyfrinachol ac at sylw'r unigolyn neu'r sefydliad a enwir uchod. Bydd unrhyw farn neu sylwadau a fynegir yn perthyn i'r awdur yn unig ac ni chynrychiolant o anghenraid farn Coleg Sir Gâr. Os ydych chi wedi derbyn yr e-bost hwn ar gam, rhowch sylw i'r gweinyddwr ar y cyfeiriad canlynol: [log in to unmask] Cysidrwch yr amgylchedd - a oes wir angen argraffu'r ebost hwn? This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. Any views or opinions expressed are solely those of the author and do not necessarily represent those of Coleg Sir Gâr. If you have received this email in error please notify the administrator on the following address: [log in to unmask] Please consider the environment - do you really need to print this email?. ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ All archives of messages are stored permanently and are available to the world wide web community at large at http://www.jiscmail.ac.uk/lists/data-protection.html If you wish to leave this list please send the command leave data-protection to [log in to unmask] All user commands can be found at https://www.jiscmail.ac.uk/help/subscribers/subscribercommands.html Any queries about sending or receiving messages please send to the list owner [log in to unmask] Full help Desk - please email [log in to unmask] describing your needs To receive these emails in HTML format send the command: SET data-protection HTML to [log in to unmask] (all commands go to [log in to unmask] not the list please) ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^