Microsoft 365 Retention facts

Microsoft 365 Retention Facts


In this age of GDPR it is essential to create a policy for data retention.  In fact I would advise creating this policy as one of the first jobs to do before migrating data to Microsoft 365.  It's important that you have a consistent approach to data wherever you store it.

One of the principles of GDPR is storage limitation.  Which is in essence not keeping data for longer than you require it for the purposes that is was intended and lawfully agreed to be used.  For more about GDPR take a look at the ICOs website:

https://ico.org.uk/for-organisations/guide-to-data-protection/guide-to-the-general-data-protection-regulation-gdpr/principles/

I've been asked a number of times now at the Microsoft 365 User Group www.m365ug.com and by colleagues about what data retention.  Specifically a question that pops up a few times is how retention works with deletion policies, what takes precedence?

It's a good question but rest assured Microsoft have us covered and your data won't go if it needs to be retained.  The following picture shows you the principles of data retention in Microsoft 365:



If you have two policies for Exchange email data, one that says delete after two years but another retention policy that says retain for 7 years.  The emails will be deleted and hidden from the users view after two years but retained in the Recoverable items folder but it will then be permanently deleted after 7 years.

If you have a policy that explicitly covers a specific users OneDrive this policy will take precedence over an implicit policy that covers the entire organisation.

If a user is subject to three policies to delete data then the deletion at the shortest period of time takes affect.  User A has a policy which deletes Teams channel messages after 5 years and another after 3 and another after 1 year.  The Teams channel messages will be deleted after 1 year.

Data retention covers data located in the following:

  • Exchange mailboxes
  • SharePoint sites
  • OneDrive accounts
  • Microsoft 365 groups
  • Skype for Business
  • Exchange public folders
  • Teams (channel messages & chats)

Azure Information Protection, DLP alerting and Data retention are still hot topics for Andrew Bettany and myself when we talk to IT Pros.  We have both delivered presentations on these topics a number of times recently which proves how important it is to customers who need help with classifying, protecting, retaining and removing their data.  This topic can be a little confusing and maybe not as glamorous as rolling out Teams to your business but definitely more important to stay compliant.  Feel free to reach out to me on Twitter @MattFooks or pop along to the Microsoft 365 User Group in Leeds.

Comments

  1. vardicetaha25 October 2022 at 06:26

    스위프트 커런트에서는 Swift Current Aquatic Centre에도 꼭 들러보세요. 이곳에서는 카지노에 방문해 보시고 솔레어카지노 커피숍에 들러 식도락 여행도 즐겨보세요. 스위프트 커런트 여행을 하신다면 Frontier Bowling Lanes에 들러 다양한 즐거움을 만끽해 보세요. 스위프트 커런트의 엘므우드 골프 클럽에서 골프 라운드를 즐겨보세요. Cypress Regional Hospital에 방문하신다면 스위프트 커런트에 대해 더 많이 알아가실 수 있을 거예요. 이 지역에서는 다양한 엔터테인먼트 등을 관람하거나 커피숍에 들러 식도락 여행을 즐기실 수 있어요.

    ReplyDelete

Post a Comment

Popular posts from this blog

Microsoft 365 Ask the Expert Panel in Leeds

Image
Microsoft 365 Ask the Expert Panel in Leeds Andrew Bettany and myself are very excited to host the next Microsoft 365 User Group in Leeds.  I mean really excited, much more than usual and this is because its going to be a special one! We have Andrew running through highlights from Microsoft Ignite.  Followed by our ask the expert panel which we have a fantastic line-up of industry heavy weights primed to answer any questions you have on Microsoft 365. So grab your tickets here as you don't want to miss this one: https://www.eventbrite.co.uk/e/m365-user-group-leeds-november-2019-tickets-74091659147#
Read more

Microsoft Threat Protection - yet another dashboard or a viable security solution?

Image
Microsoft Threat Protection Is Microsoft Threat Protection (MTP) just another dashboard of many in Microsoft 365 or is it a viable unified security product? At Ignite 2018 Microsoft announced Microsoft Threat Protection.  A product that unites many of the existing and new security products available with the Microsoft 365 E5 license.  There have also been many changes to the Microsoft 365 security tool-set including Microsoft Defender ATP replacing Windows Defender ATP.  These changes and improvements are coming thick and fast and although Microsoft would say they aren't a security company (they obviously do lots of other business in Software and Cloud), I'd argue they are now one of the biggest companies that deal with enterprise security. MTP pulls data signals from all the other security solutions in Microsoft 365.  Providing an overlay of insights into the existing security products, effectively giving you one dashboard to begin reviewing your environment.  It co
Read more

Azure Information Protection and Information Protection?

Image
Clearing up the confusion of Information Protection? I had a colleague ask me what the difference is between Azure Information Protection and the Information Protection that comes with Office 365 and the new Microsoft 365?  I know the changes in RMS, AIP and M365 IP can be a bit confusing and it's a bit more than Microsoft's marketing team coming up with the latest Mad Men style buzzwords.  I realised it was a good question and one which I'll hope to address. Putting it simply Azure Information Protection is a data protection product in Azure that allows classification, labelling and protection (CLP) of documents and data in Office 365 and on-premise repositories.  You can also apply encryption to encrypt your data.  AIP also gives you greater controls over protection.  It will protect on-premise SharePoint 2013/2016 servers, Exchange and Windows (CIFS) File servers by use of the Azure Information Protection Scanner.  The scanner can be set to run periodically (nightly)
Read more