diff --git a/windows/security/information-protection/windows-information-protection/how-wip-works-with-labels.md b/windows/security/information-protection/windows-information-protection/how-wip-works-with-labels.md index 97d367cba3..0a08cadac8 100644 --- a/windows/security/information-protection/windows-information-protection/how-wip-works-with-labels.md +++ b/windows/security/information-protection/windows-information-protection/how-wip-works-with-labels.md @@ -12,7 +12,7 @@ ms.localizationpriority: medium ms.date: 09/12/2018 --- -# How Windows Information Protection protects files that have a label +# How Windows Information Protection protects files with a sensitivity label **Applies to:** @@ -25,7 +25,7 @@ Microsoft Information Protection technologies work together as an integrated sol - Protect corporate data from unintentionally leaving to non-business environments - Enable audit reports of user interactions with corporate data on endpoint devices -This topic explains how Windows Information Protection works with other Microsoft Information Protection technologies to protect files that have a label. +This topic explains how Windows Information Protection works with other Microsoft Information Protection technologies to protect files that have a sensitivity label. ## What is Microsoft Information Protection? @@ -33,17 +33,17 @@ This topic explains how Windows Information Protection works with other Microsof - [Office 365 Information Protection](https://docs.microsoft.com/office365/securitycompliance/office-365-info-protection-for-gdpr-overview) is a solution to classify, protect, and monitor personal data in Office 365 and other Software-as-a-Service (SaaS) apps. -- [Azure Information Protection](https://docs.microsoft.com/azure/information-protection/what-is-information-protection) is a cloud-based solution that can be purchased either standalone or as part of Microsoft 365 Enterprise helps an organization to classify and protect its documents and emails by applying labels. End users can choose and apply labels from a bar that appears below the ribbon in Office apps: +- [Azure Information Protection](https://docs.microsoft.com/azure/information-protection/what-is-information-protection) is a cloud-based solution that can be purchased either standalone or as part of Microsoft 365 Enterprise helps an organization to classify and protect its documents and emails by applying labels. End users can choose and apply sensitivity labels from a bar that appears below the ribbon in Office apps: ![Sensitivity labels](images/sensitivity-labels.png) -## Default behaviors for a label +## Default behaviors for a sensitivity label -Enterprises can create and manage labels on the **Labels** page in the Office 365 Security & Compliance Center. When you create a label, you can specify that endpoint protection should apply to content with that label. +Enterprises can create and manage sensitivity labels on the **Labels** page in the Office 365 Security & Compliance Center. When you create a sensitivity label, you can specify that endpoint protection should apply to content with that label. -- When the label is configured for content that includes business data, the device enforces work protection for documents with the label -- When the label is *not configured* with any WIP policy, the device reverts to whatever WIP policy has been defined in Intune or System Center Configuration Manager (SCCM): +- When the sensitivity label is configured for content that includes business data, the device enforces work protection for documents with the label +- When the sensitivity label is *not configured* with any WIP policy, the device reverts to whatever WIP policy has been defined in Intune or System Center Configuration Manager (SCCM): - If the document is downloaded from a work site, the device enforces work protection - If the document is downloaded from a personal site, no work protection is applied @@ -51,26 +51,26 @@ For more information about labels, see [Overview of labels](https://docs.microso ## Use cases -This sections covers how WIP works with labels in specific use cases. +This sections covers how WIP works with sensitivity labels in specific use cases. ### User downloads from or creates a document on a work site -If WIP policy is deployed, any document that is downloaded from or created on a work site will have WIP protection, regradless of whether the document has a label. +If WIP policy is deployed, any document that is downloaded from or created on a work site will have WIP protection, regradless of whether the document has a sensitivity label. -If the document also has a label, which can be Office or PDF files, then WIP protection is applied according to the label. +If the document also has a sensitivity label, which can be Office or PDF files, then WIP protection is applied according to the label. ### User downloads a confidential Office or PDF document from a personal site Windows Defender ATP scans for any file that gets modified or created, including files that were downloaded from or created on a personal site. -If the file has a label, then the corresponding WIP protection gets applied, even though it came from a personal site. +If the file has a sensitivity label, then the corresponding WIP protection gets applied, even though the file came from a personal site. For example: 1. Sara creates a PDF file on a Mac device and labels it as **Confidential**. 2. She emails the PDF from her Gmail account to Laura. -3. Laura opens the PDF file on her managed Windows 10 device. +3. Laura opens the PDF file on her Windows 10 device. 4. WIP policy gets applied and the file is protected. -The PDF file doesn't need any other work context beyond the label. +The PDF file doesn't need any other work context beyond the sensitivity label. ## Prerequisites