Overview
Article explains the differences between the "Sensitive Data - Purdue Only" and the "Restricted Data - Purdue Only" sensitivity labels.
Details
There are two “Purdue Only” Microsoft Sensitivity Labels.
- Sensitive Data – Purdue Only
- Restricted Data – Purdue Only
These two labels have similar functionality.
Both labels will apply a watermark to files identifying what type of label has been assigned to the file.
Both labels also apply restrictions on the files that will prevent them from being accessed externally. What this means is that an account that does not have permission to access the Purdue West Lafayette M365 tenant will not be able to access the file.
Someone with access to the file will be able to attempt to share the file with an outside person. However, when that outside person attempts to access the file, they will get an undescriptive error message. The error message may say “Something went wrong” or “Server error”. However, the true reason for the error message is that their access is being prevented because of the Sensitivity Label that has been applied that has the designation of “Purdue Only”.
If external access is needed for a file, then the Sensitivity Labels with designations of “Purdue and External” should be used.
Special care should always be taken with Restricted Data. The only appropriate locations for Restricted Data are within the appropriate “Purdue Only” and “Purdue and External” document libraries within an approved SharePoint Restricted Data Storage site.
Purdue Only is defined as Purdue domain accounts that have access to the Purdue West Lafayette Microsoft 365 tenant. This includes: Purdue West Lafayette, Purdue Northwest, Purdue Fort Wayne, and potentially other designated groups.
Still need help? Click the 'Purdue IT Request' button to start a ticket.