Detect Sensitive Data Per ISO 27001 in Google Drive (US) and Notify

This is a DLP policy template that you can implement easily in the Nightfall platform.

Description	This policy enforces broad protection of sensitive assets in GDrive in compliance with ISO2 70001.
Integration	Google Drive
Use Case	Safeguard Personal Information
Output Settings	Alert admins in Slack or Teams, recommend configuring alerting to SIEM, and alert end-user with remediation instructions and educational messaging to proper handling of senstive data handling to prevent future exposure.
Inclusions	Select user drives and shared drives you want to monitor.
Exclusions	Exclude files from scanning based on files, users, user groups, and permissioned access.

Applied Detection Rules

These are the detection rules that will be applied within this policy, defining what types of sensitive data the policy is looking for.

Secrets & Credentials

Aims to prevent the exposure of credentials.

PCI-DSS Compliance

Aims to prevent the exposure of cardholder data and maintain the security of payment transactions.

Protected Health Information (PHI)

Aims to prevent the exposure of sensitive patient health information in accordance with the Health Insurance Portability and Accountability Act (HIPAA). Detects data that uniquely identifies an individual in combination with a diagnostic indicator such as medication, diagnosis, and procedure.

Confidential Document Keywords

Detects keywords associated with confidential documents.

Confidential Project Names

Detects mentions of confidential project names.