Manage policy template




Overview
Policy template is defined as any template that adheres to the compliance regulations for your organization. You use the template to maintain consistency while developing, implementing, and maintaining policies within your company.
inSync provides a few predefined policy templates, and the ability to create policy templates to address your organization's requirements. The predefined policy template cannot be edited or deleted; however, you can modify or delete custom policy template.
The following table provides information about all the templates specific for a geographical region.
Region | Template |
---|---|
Global | Financial data |
Personal Identification Information (PII) | |
USA | Document Classification |
Personal Identification Information (PII) | |
HIPAA | |
UK | Document Classification |
UK NHS | |
Personal Identification Information (PII) | |
Germany | Document Classification |
Personal Identification Information (PII) | |
South Africa | Document Classification |
Japan | Document Classification |
Personal Identification Information (PII) |
As an inSync cloud administrator or legal administrator, you can specify the following while creating or editing a policy template:
- Scan files based on Multipurpose Internet Mail Extensions (MIME) types to cover against rogue or malicious end users trying to change the extensions of files with sensitive data.
You can configure a list of file types that are to be indexed or index all backup data when creating a compliance policy. inSync then filters the files that are to be indexed on MIME Types and not on the file extensions. You can select a parent category of MIME types which includes all the MIME types included in the selected category by default. inSync will then start reporting violations for the respective file types after the next backup schedule if there any updates to the MIME types once a compliance policy is created. Here is the list of file extensions that inSync scans to report compliance violations.
Note: The selected MIME types are also applicable to email attachments.
- Specify a threshold value for the sensitive data
If the count of sensitive data type found in file or email exceeds the threshold value configured for that sensitive data type in any of the applicable policy template, then inSync marks the violation as Critical. Else inSync marks the violation as Normal.
Create custom policy template
Overview
In addition to the predefined policy template, you can create custom policy template to address your organization's intellectual property policies or any other requirements.
Procedure
To create a compliance policy template:
- On the inSync Master Management Console menu bar, click Manage > Compliance Policies. The Manage Compliance Policies page appears.
- Click the Templates tab. The Policy Template List appears, which includes both predefined and custom policy template.
- Click New Template. The New Policy Template dialog box appears.
- At the Summary tab, enter the following information:
UI item Description Name The name for the policy template.
This is a mandatory field.
Description The description for the policy template.
This is an optional field.
- Click Next. The Sensitive Data tab appears.
- At the Sensitive Data tab, enter the following information:
UI item Description Region Select the region to associate with the policy template. Sensitive Data Category Select the sensitive data category that is available for the selected region. Sensitive Data Select the sensitive data that is available for the selected category.
Notes:
- You can associate single or multiple sensitive data to the policy template.
- However, if you add multiple sensitive data that are applicable to different geographic regions, then the template will be set by default to Global region.
- The policy template must be associated to at least one sensitive data.
Critical Threshold Count Specify the threshold count for the sensitive data type.
Critical Threshold Count defines condition when the violation severity will be marked as critical. Default value is 10.
Example
When set to 10 (default), detection of 10 occurrences of sensitive data will mark given violation as critical.
- Click Add. The sensitive data is added to the policy template.
- Click Next. The File Inclusion tab appears.
- Select the list of file types that you want to index when creating a compliance policy. Only files under the selected MIME types will be scanned for compliance violations.
- Click Finish.
A custom policy template is created and is displayed under Policy Template List.
View the list of policy templates
You can view all the available policy templates, which includes both predefined and custom templates.
To view the list of compliance policy templates:
- On the inSync Master Management Console menu bar, click Manage > Compliance Policies. The Manage Compliance Policies page appears.
- Click the Policy Templates tab. The Policy Template List appears, which includes both predefined and custom policy templates.
Modify a policy template
Overview
As a cloud administrator, you can modify both predefined and custom compliance policy templates.
Procedure
To modify a compliance policy template:
- On the inSync Master Management Console menu bar, click Manage > Compliance Policies. The Manage Compliance Policies page appears.
- Click the Policy Templates tab. The Policy Template List appears, which includes both predefined and custom policy template.
- Click the required policy template. The details for that policy template appears.
- To modify the file inclusion settings, click Edit in the File Inclusion area and perform the following tasks:
- Select the list of file types that you want to index when creating a compliance policy. Only those files under the selected MIME types will be scanned for compliance violations.
- Click Done.
- To modify the sensitive data settings, click Edit in the Sensitive Data area and perform the following tasks:
- Specify the threshold count for the sensitive data type.
inSync identifies critical files as those files in which the sensitive data is equal to or greater than the critical threshold specified for the sensitive data.
-
Click Done.
- Specify the threshold count for the sensitive data type.
- Modify the required information, and then click Done.
The updates are displayed on the policy template details page.
Delete a policy template
Overview
As a cloud administrator, you can delete a custom policy template. However, you cannot delete the predefined policy templates that are shipped along with inSync.
Note: You cannot delete a custom policy template, if it is associated with one or more policies.
Procedure
To delete a policy template
- On the inSync Master Management Console menu bar, click Manage > Compliance Policies. The Manage Compliance Policies page appears.
- Click the Policy Templates tab. The Policy Template List appears, which includes both predefined and custom policy templates. The Publisher column specifies whether the sensitive data is predefined or custom.
- Click the required custom policy template. The Summary page for that policy template appears.
- Click Delete Template.
- On the confirmation message that appears, click Yes.
The custom policy template is deleted from inSync.