Cloud Data Loss Prevention

Consistently enforce DLP policies across data in your cloud services
to protect information from theft and loss, while meeting compliance requirements

Sensitive data is moving to the cloud, but many organizations lack policy controls for data stored in cloud services. The average organization uses 1,4274 cloud services, and employees often introduce new ones without the knowledge or consent of the IT department. Analyzing cloud usage data for 30 million users, across over 600 enterprises who are using McAfee CASB, we found that 21% of documents uploaded to file sharing services contain sensitive information such as personally identifiable information (PII), protected health information (PHI), payment card data, or intellectual property, creating cloud compliance concerns. Data breaches in the cloud are also on the rise. There were more breaches in 2014 than any year on record and the Ponemon Institute found the average cost of a data breach jumped 23% in the last two years to $3.79 million.


Many organizations have invested in the top data loss prevention tools to protect their on-premise information from theft or loss, and comply with data privacy and compliance laws. However, most of these solutions are designed to protect data in file servers or email, and therefore don’t address today’s cloud governance and mobile security challenges as data moves to unsanctioned cloud services that are accessed by unmanaged devices. Gartner estimates that one-third of consumer data will be stored in the cloud by 2016 and Skyhigh’s own estimates show the average organization uploads 3.1GB to the cloud each day. Recognizing that unmanaged data migration to the cloud presents risks, IT teams are increasingly looking to extend their data loss prevention policies to data in the cloud to minimize their risk exposure.

McAfee offers the leading cloud data loss prevention solution, which enables organizations to extend their DLP policies to where their information lives today –the cloud. McAfee’s cloud data loss prevention enforces DLP policies in near real-time and provides the ability to perform an on-demand scan of all data stored in a cloud service today to identify data outside of policy already in the cloud. You can configure granular DLP policies in McAfee with a wide range of policy actions including alert, quarantine, tombstone, or block sensitive data from being uploaded to cloud services. Or you can leverage existing policies you’ve created in enterprise DLP solutions from Symantec, EMC, McAfee, and Websense with closed-loop remediation.

Download the Cheat Sheet

Learn about cloud DLP best practices to ensure your organization meets internal and external compliance requirements.

Download Now

Enforce cloud data loss prevention policies to protect information from theft or loss

Ensure compliance with regulations such as PCI DSS, HIPAA-HITECH, GLBA, SOX, CIPA, FISMA, and FERPA by applying comprehensive data loss prevention capabilities to new or existing content in the cloud.


Enforce comprehensive DLP policies

McAfee’s data loss prevention software protects data by enforcing granular DLP policies based on keywords, regular expressions, file characteristics, and user activity. Leverage pre-built, vertical-specific templates or extend existing policies defined within on-premise DLP systems.

Deploy flexible, closed-loop workflows

Enforce a broad range of actions including alerting, blocking, tombstoning, and quarantining. Closed-loop remediation with on-premise DLP systems from Symantec, EMC RSA, Intel McAfee, and Websense enables you to utilize existing workflows.

Key Features

Cloud Data Loss Prevention

Enforces DLP policies and supports several actions, including alerting, blocking, tombstoning, and quarantining.

On-Premises DLP Integration

Provides integration and closed-loop remediation with on-premise DLP solutions from Symantec, EMC RSA, Intel-McAfee and Websense.

Pre-Built DLP Templates

Provides out-of-the-box DLP templates for all major verticals and regulations to help identify sensitive content such as PII, PHI, or IP.

On-Demand Data Scan

Examines existing content in all or specific folders to identify sensitive data subject to compliance requirements or security policies.

Let's unleash the power of the cloud

Request a Demo Request a Cloud Audit