Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

A tracking group is a label (or category) that will be assigned to content a file when a policy runs. A policy can contain multiple tracking groups, and each tracking group includes multiple pieces of information that determine everything from the criteria content a file needs to meet to be a part of the tracking group to the actions that should be taken against the content file in the tracking group. The tracking groups are the heart of the policy.

Understanding Tracking Groups

Tracking groups contain multiple pieces of information: name priority, risk level, priority name, cost per incident, assignment rules, and actions.

Name

You assign a name to each tracking group. The group name should follow a logical labeling schema. The name displays in all reporting for the tracking group.

Priority

DryvIQ evaluates the tracking groups in priority order--the order they are sorted within the policy. Although a file may match the rules for multiple tracking groups, a file can only exist in one tracking group, so it will be assigned to the first tracking group that is matched. Therefore, you should order your tracking groups from highest risk level to lowest risk level to ensure a file is always matched against the higher risk levels first.

...

Risk Level

The risk level identifies the sensitivity of the content within the file and how negatively the content could impact your organization if it were to remain in its current state. The risk level is defined at the tracking group level, so any content all files within the tracking group is are classified as having that defined risk. For example, if you create a tracking group "Sensitive" and set the risk level to "High," any content file that meets the criteria of the assignment rules for the tracking group is considered high-risk content and will be flagged accordingly.

Priority

SkySync evaluates the tracking groups in priority order--the order they are sorted within the policy. Although a file may match the rules for multiple tracking groups, it can only exist in one tracking group, so it will be assigned to the first tracking group that is matched. Therefore, you should order your tracking groups from highest risk level to lowest risk level to ensure content is always matched against the higher risk levels first.

...

Name

You assign a name to each tracking group. The name displays in all reporting for the tracking group. The group name should follow a logical labeling schema that helps identify the tracking group and the content the tracking group is designed to identify. The name is limited to 255 characters.

...

Cost per Incident

Each tracking group can be assigned a cost. This is the amount a file in the tracking group could cost the company in legal fees or penalties if it remains in its current state. For example, if a file contains sensitive data and is located on a sharestored in a shared location (network shared drive, cloud storage platform, etc.), it could cost the company a set amount of money in fines if the company’s data were to be audited or if a security breach allowed that file to be exposed. The cost is included in the reporting for the tracking group so you can see the total cost for the tracking group (cost times the number of files in the tracking group).

...

Assignment Rules

Assignment rules are a list lists of entity types that should be run against a file. An You can add multiple assignment rules to a tracking group, and each assignment rule can contain one to many entity types. If a file meets the criteria for the assignment rules (matches all the listed entity types), it is added to the tracking groupconsist of multiple.

The list of entity types within a single assignment rule serves as an “and” condition. A file must match all the entity types listed for the file to be added to the tracking group.

Each individual assignment rule serves as an “or” condition. DryvIQ will compare each file to each assignment rule in a tracking group. If the file doesn’t match an assignment rule, DryvIQ will work through the subsequent assignment rules in priority order. As soon as the file matches one of the assignment rules, DryvIQ adds it to the corresponding tracking group.

...

Info

If the last tracking group on a policy contains an empty, unnamed assignment rule, the system will treat this tracking group as the “catch all” group for the policy. Any items not assigned to one of the “full” tracking groups on the policy will be assigned to this tracking group. See Assignment Rules for more information.

Actions

The actions for a tracking group tell SkySync DryvIQ what to do with the content files in each tracking group. Multiple actions can be applied to the tracking group to force the remediation through an approval workflow, or you can select to take a definitive action against the content file as soon as it is assigned to the tracking group.

...

Approval: Select this action when you want to require manual approval. You would choose this option if you want to manually take action against the content in the tracking group. The content is flagged, and you will be responsible for moving it, deleting it, etc.

...

Delay: This option delays any additional actions on the tracking group for the specified time. When selected, you will specify the delay value and interval (seconds, minutes, hours, or days).

...

Delete: SkySync will delete files that belong to the tracking group.

...

Move: SkySync will move the file to a specified location. When you select this action, you need to specify the connection and directory where SkySync needs to move the file.

...