UCSF continues its enhancement of data security with its block activation of the Data Loss Prevention (DLP) Endpoint Agent this mid-April.  

This solution will protect UCSF-restricted data, such as patient information, from leaving our organization by monitoring data transfers to non-encrypted removable drives and non-UCSF-sanctioned cloud collaboration suites (e.g., Dropbox, Google Drive, iCloud). Apricorn drives, available via BearBuy are recommended options for encrypted drives. If any potentially UCSF-restricted data (such as patient information) is detected, the agent will block the transfer and notify the user with a popup message. If users experience blocking they believe is in error, they can open a ticket on the DLP Service Page.   

Additionally, the DLP Endpoint Agent will perform passive inventory scans to identify files on systems that match UCSF-restricted data. While no action is taken during these scans, this helps us develop a map of UCSF-restricted information storage locations. For more information, please see our DLP Service Page. 

For more information about DLP, the rollout timeline, and other FAQs, please visit our  DLP Endpoint Agent Project Page.