A financial services company uses Microsoft 365 E5 and wants to implement a data loss prevention (DLP) policy that blocks users from sharing credit card numbers via email and Teams messages. The compliance team also wants to generate reports on policy violations. They are considering using Microsoft Purview. Which approach should they take to meet these requirements with minimum administrative overhead?
Purview DLP can apply to multiple workloads from a single policy.
Why this answer
Option A is correct because Microsoft Purview DLP policies can be created in the Microsoft Purview compliance portal to monitor and block sensitive data in Exchange Online and Teams. Option B is wrong because creating individual policies per service is more overhead. Option C is wrong because Microsoft Defender for Cloud Apps is for cloud app security, not primary DLP for email and Teams.
Option D is wrong because Microsoft Sentinel is a SIEM and not designed for DLP policy enforcement.