Skip to main content
Manage policy template
Updated over 4 weeks ago

Overview

Policy template is defined as any template that adheres to the compliance regulations for your organization. You use the template to maintain consistency while developing, implementing, and maintaining policies within your company.

inSync provides a few predefined policy templates, and the ability to create policy templates to address your organization's requirements. You cannot delete a predefined policy template; however, you can modify or delete a custom policy template.

The following table provides information about all the templates specific for a geographical region.

Region

Template

Global

  • Financial data

  • Personally Identifiable Information (PII)

USA

  • Document Classification

  • Personally Identifiable Information (PII)

  • California Consumer Privacy Act (CCPA)

  • HIPAA

  • Personal Health Information (PHI)

UK

  • Document Classification

  • UK National Health Service

  • Personally Identifiable Information (PII)

Germany

  • Document Classification

  • Personally Identifiable Information (PII)

South Africa

  • Document Classification

Japan

  • Document Classification

  • Personally Identifiable Information (PII)

As an inSync Cloud administrator or legal administrator, you can specify the following while creating or editing a policy template:

  • Scan files based on Multipurpose Internet Mail Extensions (MIME) types to cover against rogue or malicious end users trying to change the extensions of files with sensitive data.

    You can configure a list of file types that are to be indexed or index all backup data when creating a compliance policy. inSync then filters the files that are to be indexed on MIME Types and not on the file extensions. You can select a parent category of MIME types which includes all the MIME types included in the selected category by default. inSync will then start reporting violations for the respective file types after the next backup schedule if there any updates to the MIME types once a compliance policy is created. Here is the list of file extensions that inSync scans to report compliance violations.

    Here is a list of file extensions (and their MIME types) that are scanned by inSync to report compliance violations.

    By default, the following Google Workspace native files' MIME types are scanned by inSync to report compliance violations:

    • application/vnd.google-apps.document

    • application/vnd.google-apps.presentation

    • application/vnd.google-apps.spreadsheet

Category

MIME Types

File extensions

Text Files

text/csv

.csv

Text Files

text/plain

.txt

Text Files

text/tab-separated-values

.tsv, .tab

Rich Text Format

application/rtf

.rtf

Rich Text Format

text/richtext

.rtx

Emails

application/vnd.ms-outlook

.msg

MS Office Documents

application/msword

.doc, .dot

MS Office Documents

application/msword2

.doc, .dot

MS Office Documents

application/msword5

.doc, .dot

MS Office Documents

application/vnd.ms-word

.doc, .dot

MS Office Documents

application/onenote

.onetoc, .one, .onetoc2

MS Office Documents

application/vnd.ms-excel

.xls, .xla, .xl

MS Office Documents

application/msexcel

.xls, .xla, .xlt

MS Office Documents

application/vnd.ms-excel.addin.macroenabled.12

.xlam

MS Office Documents

application/vnd.ms-excel.sheet.2

.xls, .xla, .xlt

MS Office Documents

application/vnd.ms-excel.sheet.3

.xls, .xla, .xlt

MS Office Documents

application/vnd.ms-excel.sheet.4

.xls, .xla, .xl

MS Office Documents

application/vnd.ms-excel.sheet.macroenabled.12

.xlsm

MS Office Documents

application/vnd.ms-excel.workspace.3

.xlsm

MS Office Documents

application/vnd.ms-excel.workspace.4

.xls, .xla, .xlt

MS Office Documents

application/vnd.ms-powerpoint

.ppt, .pot, .pps. ppa

MS Office Documents

application/mspowerpoint

.ppt, .pot, .pps. ppa

MS Office Documents

application/vnd.ms-powerpoint.addin.macroenabled.12

.ppam

MS Office Documents

application/vnd.ms-powerpoint.presentation.macroenabled.12

.pptm

MS Office Documents

application/vnd.ms-powerpoint.slide.macroenabled.12

.sldm

MS Office Documents

application/vnd.ms-powerpoint.slideshow.macroenabled.12

.ppsm

MS Office Documents

application/vnd.ms-project

.mpp

MS Office Documents

application/vnd.ms-word.document.macroenabled.12

.docm

MS Office Documents

application/vnd.openxmlformats-officedocument.presentationml.presentation

application/vnd.openxmlformats-officedocument.presentationml.presentation

Important: inSync does not scan documents saved in Strict Open XML Document format.

MS Office Documents

application/vnd.openxmlformats-officedocument.presentationml.slide

.sldx

MS Office Documents

application/vnd.openxmlformats-officedocument.presentationml.slideshow

.ppsx

MS Office Documents

application/vnd.openxmlformats-officedocument.spreadsheetml.sheet

.xlsx

Important: inSync does not scan documents saved in Strict Open XML Document format.

MS Office Documents

application/vnd.openxmlformats-officedocument.wordprocessingml.document

.docx

Important:

inSync does not scan documents saved in Strict Open XML Document format.

PDF Files

application/pdf

.pdf

PDF Files

application/x-pdf

.pdf

Open Documents

application/vnd.oasis.opendocument.presentation

.odp

Open Documents

application/x-vnd.oasis.opendocument.presentation

.odp

Open Documents

application/vnd.oasis.opendocument.spreadsheet

.ods

Open Documents

application/x-vnd.oasis.opendocument.spreadsheet

.ods

Open Documents

application/vnd.oasis.opendocument.text

.odt

Open Documents

application/x-vnd.oasis.opendocument.text

.odt

Archive files

application/zip

.zip

Archive files

application/tar

.tar

Archive files

application/x-tar

.tar

Archive files

application/gzip

.tar.gz

Archive files

application/x-gzip

.tar.gz

Archive files

application/x-gtar

.tar.gz

Archive files

application/bzip2

.tar.bz2

Archive files

application/x-bzip2

.tar.bz2


๐Ÿ“ Note
โ€‹To report compliance violations, inSync scans the files by MIME types and not by file extensions. The file extensions column lists the file extensions that are associated with a particular MIME type for referential purposes.


๐Ÿ“ Note
โ€‹ The selected MIME types are also applicable to email attachments.


  • Specify a threshold value for the sensitive data

    If the number of sensitive data types found in a file or email exceeds the threshold value configured for that sensitive data type in any of the applicable policy templates, then inSync marks the violation as Critical. Otherwise, inSync marks the violation as Normal.

Create a custom policy template

Overview

In addition to the predefined policy templates, you can create a custom policy template to address your organization's intellectual property policies or any other requirements.

Procedure

To create a compliance policy template:

  1. Click the global navigation icon to access the Global Navigation Panel and select Sensitive Data Governance. The Sensitive Data Governance overview page is displayed.

  2. On the Sensitive Data Governance page , click Configure >Templates. The Templates page opens. This page includes both predefined and custom policy templates.

  3. Click NewTemplate. The New Template page appears.

  4. Under the General section, enter the following information:

    • Template Name: The name of the policy template. This is a mandatory field.

    • Description: The description of the policy template. This is an optional field.

  1. Under the Violation Rule section, click Add Sensitive Data and enter the following information:

    • Region: Select the region to associate with the policy template.

    • Sensitive Data Category: Select the sensitive data category that is available for the selected region.

    • Sensitive Data: Select the sensitive data that is available for the selected category.


      ๐Ÿ“ Note

      • You can associate single or multiple sensitive data to the policy template.

      • However, if you add multiple sensitive data that are applicable to different geographic regions, then the template will be set by default to Global region.

      • The policy template must be associated with at least one sensitive data.


    • Critical Threshold Count: Specify the threshold count for the sensitive data type.

      Critical Threshold Count defines a condition when the violation severity will be marked as critical. The default value is 10.

      Example:

      When set to 10 (default), detection of 10 occurrences of sensitive data will mark given violation as critical.

  2. Click Add. The sensitive data is added to the policy template.

  3. If you have added multiple sensitive data types, inSync displays the Raise Violations if section with the following options:

    • At least one sensitive data present in a document: Select if you want inSync to raise a violation if any of the defined violation rules match the data present in a document.

    • All sensitive data present in a document: Select if you want inSync to flag a violation if all of the defined violation rules match the data present in a document.

  4. Under the File Inclusion section, select the list of file types that you want to index when creating a compliance policy. Only files under the selected MIME types will be scanned for compliance violations.

  5. Click Save.

A custom policy template is created and is displayed on the Templates page.

Test new template rule

You can validate any predefined or custom template to verify if it's working as expected. For validation, you can use sample files that inSync must report violations, for, that template. During the check, inSync displays the previews of the violations for each file.


โ— Important

  • inSync displays a maximum of 15 violation previews for each file.

  • You can upload a maximum of 10 files to test template rules.

  • The maximum size of all files should not exceed 10 MB.


multiple files template violations test.png

The following options are available to test templates:

  • While creating a custom template: When you create a custom template, you can use the Test Rule option to check the violations that the template will report. Select the files that you want to scan for violations associated with this policy template, and click View Violations. inSync scans the files and displays the preview of violations in each file.

  • Testing existing custom template: Click the name of the custom template data that you want to validate and click Edit. Make the desired changes in the template rules and click Next. Select the files that you want to scan for violations associated with this policy template, and click View Violations. inSync scans the files and displays the preview of violations in each file.

View the list of policy templates

You can view all the available policy templates, which include both predefined and custom templates.

To view the list of compliance policy templates:

  1. Click the global navigation icon to access the Global Navigation Panel and select Sensitive Data Governance. The Sensitive Data Governance overview page is displayed.

  2. On the Sensitive Data Governance page , click Configure >Templates. The Templates page opens. This page includes both predefined and custom policy templates.

Modify a policy template

Overview

As a cloud administrator, you can modify both predefined and custom compliance policy templates.

Procedure

To modify a compliance policy template:

  1. Click the global navigation icon to access the Global Navigation Panel and select Sensitive Data Governance. The Sensitive Data Governance overview page is displayed.

  2. On the Sensitive Data Governance page , click Configure >Templates. The Templates page opens. This page includes both predefined and custom policy templates.

  3. To modify the file inclusion settings, click Edit in the File Inclusion area and do the following:

    1. Select the list of file types that you want to index when creating a compliance policy. Only those files under the selected MIME types will be scanned for compliance violations.

    2. Click Done.

  4. To modify the sensitive data settings, click Edit in the Violation Rule area and do the following:

    1. Specify the threshold count for the sensitive data type.
      inSync identifies critical files as those files in which the sensitive data is equal to or greater than the critical threshold specified for the sensitive data.

      edit template section.png
    2. Change the Violation Criteria settings if required.

  5. Click Done.

Delete a policy template

Overview

As a cloud administrator, you can delete a custom policy template. However, you cannot delete the predefined policy templates that are shipped along with inSync.


๐Ÿ“ Note
โ€‹You cannot delete a custom policy template if it is associated with one or more policies.


Procedure

To delete a policy template

  1. Click the global navigation icon to access the Global Navigation Panel and select Sensitive Data Governance. The Sensitive Data Governance overview page is displayed.

  2. On the Sensitive Data Governance page, click Configure >Templates. The Templates page opens. This page includes both predefined and custom policy templates.

  3. Click the required custom policy template that you want to delete. The details of that policy template appears.

  4. Click Delete.

  5. On the confirmation message that appears, click Yes.

The custom policy template is deleted from inSync.

Did this answer your question?