NC Protect Compliance Policies Overview

The Compliance policies enables rules-based scanning, classification and monitoring in NC Protect. Use it to create and configure scans to monitor compliance with regulations such as privacy, etc.

Compliance policies automate data compliance by scanning for data governance policies, including sensitivity, privacy, and data quality. When the NC Protect scans and classifies a document, that classification can then be used as a data attribute and protected by NC Protect rules using a common set of SharePoint metadata.

Compliance policy settings can be found on the Rules menu in NC Protect. It consists of three components:

  • Metadata

    Metadata fields are displayed in columns in SharePoint, M365 libraries and SharePoint lists. A metadata value is required for compliance policies or defining compliance rules. When a compliance policy scans your file contents, it uses this metadata field to set and display the compliance scan results. Metadata can also be used to restrict views and user actions when mapping roles.
  • Policies
    Policies are groups of checkpoints that scan data at rest and monitor for new or changed content. A compliance policy requires metadata (above) to be defined before it can be assigned to a policy. Compliance policies can also be used to define Policy Sites. Compliance policies use these sites to store results, track changes, run SharePoint workflows and view reports.
  • Roles
    Roles are used in metadata definitions to limit who can see the metadata on a SharePoint ribbon and who is allowed to change the classification values. Roles are defined logical sets of Active Directory, Azure AD and SharePoint users and groups. Roles are also used to control who can start and stop compliance scans.

NC Protect Compliance settings