AGAT

BOOK MEETING
CONTACT US

Author: Yoav

Categories
blog

Microsoft Teams retention policies: capabilities and limitations

unnamed 1

The volume and complexity of data that companies generate in communication platforms such as MS Teams and store in the cloud are increasing every day. In this article, we will cover all about taking the critical step of creating retention policies and protocols to delete unnecessary content and avoid problems.

Table of contents:

1- What are retention Policies and why do you need to implement them?

2- How to set retention policies in MS Teams

3- The need for data retention and the special case of contact centers

4- Microsoft’s retention policy’s limitations

5- AGAT’s solution 

1- What are retention Policies and why do you need to implement them?

Today, organizations use communication platforms to share and manage vast amounts of data, with ever-increasing volumes of messages and attachments containing information about customers, employees, transactions, strategies, and more.

An approach of “keeping everything” is outdated and virtually impossible given the constant growth of records, the costs related to storing, and the risks of having sensitive information exposed. The best thing to do is to take a proactive approach: identify and label the information that must be deleted, and set retention policies in place.

A retention policy is a key part of the data lifecycle, it describes how long a business needs to keep a piece of information (chats, documents, statements, invoices), where it’s stored, and how to dispose of records when it’s time.

Having control over your content is important to:

  • Comply with regulations and internal policies that require you to retain content for a minimum period of time.
  • Delete content as required by contracts with third-party collaborators.
  • Reduce legal exposure by deleting old content that could become a liability or put you at risk of security breaches.
  • Help your business productivity with an uncluttered platform, keeping only content that’s current and relevant for employees.
  • Avoid exceeding storage limits and reduce storage costs.

2- How to set retention policies in MS Teams

MS Teams supports retention policies for chat and channel messages so that admins can decide whether to retain data and prevent permanent deletion, delete it, or retain it for a specific period of time and then delete it. By default, MS Teams chat, channel, and data will be retained indefinitely.

The place where you can set data retention policies for MS Teams is the Microsoft Purview Compliance Portal. There, you have to choose “Data lifecycle management” from the menu, then “Retention policies”. Next, choose “New retention policy”, select your scope, complete your desired configuration and save your settings.

jJGxVCgL4kOYCUsEYsntbMFsMwrfCwMrU7xSCPtsdDg nmkSOksh3 sY3UwVSog0aS3pwhYhgxSN19Wjqn qqxl8Kvb2KjJl8oq6eZ4ququYpkRv 3icKSRn96Frk73O

Retention policies can be set up for all Teams messages. It is also possible to configure separate retention policies for private chats and messages from standard or private channels. They can also be applied only to specific users or teams in the organization. 

The start of the retention period will always be based on when a message was created. Keep in mind that if you use retention policies to delete data in Microsoft Teams, messages will be permanently and irreversibly deleted from all storage locations on the Teams service and in the backup folders on Exchange.

3- The need for data retention and the special case of contact centres

Setting retention policies to manage the span and life cycles of enterprise data is one of the most important steps any company can take if it seeks to address enhanced consumer privacy, compliance, data protection requirements, and more.

Regulatory authorities have an eye on how businesses manage data stored in the cloud, and their directives, specified in compliance regulations such as GDPR, HIPAA, PCI DSS, and more can easily become too much to handle. 

As organizations classify information, they must ensure data retention policies align with compliance and legal restrictions. Also, they must consider pre-existing contractual needs that will shape data retention schedules.

Contact Centers, no matter how big or small, are complex businesses that need to take their strategy for data lifecycle management very seriously. This is because they generate lots of sensitive data about customers every minute that could, if not managed correctly, become a liability. 

Also, call centres usually work as third-party providers, so they get the responsibility of managing data that isn’t their own. In this case, a single contact centre that provides services to many businesses faces the challenge of having to set up different retention policies to meet each client’s specific needs as defined in every contract they engage in. 

For example, one contractor may state that messages between employees and customers must get deleted within a short period of time, like three months, or immediately upon customer request to comply with regulations. 

But that is just a start, real-life retention policies are even more complex, with different periods of time depending on the kind of communication. This is what they can look like:

p4VTaTkRk 5mJr5hjsiKM3c0xpmudX89rEEUqWEkwJKqSTVtcDNRr

4- Microsoft’s retention policy’s limitations 

To address such scenarios, retention periods in MS teams could be used and set to be as short as 24 hours for both chat and channel messages. However, users have found that depending on server load it can take from 72 hours to seven days in some cases before chat and channel messages get deleted, a very serious compliance issue.

Failing to properly delete content not only puts the safety of customers’ most sensitive information at risk but can also make businesses face sizable fines and damage their reputations.

5- AGAT’s solution 

With AGAT’s SphereShield messages can be deleted immediately, and they won’t be viewable even to the sender. Also, messages can be automatically deleted based on customizable parameters such as date, groups of users, keywords, and more. 

z0kwqZlfFMP dYGDvWFzxE3kBFh98oW L3ttRFBomn1nZt7knCcfbSIshgw5qxNexDwYZLdJRNu8DKI4iRSWLTEo3qqUUNcz VbB1FPumqzdmxy77szW5XUTvXNwRttGBeDf4e2zAIIYMaM1TSUSxJ8vX n3u MV RbhnPZN 0aXFcTMPUE68ftQ

AGAT offers configuration capabilities to classify data precisely, make better protocols of deletion and avoid compliance missteps; all this within an interface easy to operate by any user.

Contact us today to learn more. One of our experts will get back to you as soon as possible.

Categories
blog DLP eDiscovery Ethical Wall webex guides

Announcing Webex Meetings New Capabilities

webex thmbn blog 1

AGAT Software provides unique compliance and productivity solutions for Webex Meetings including Ethical Wall to control participants and activities during the meeting, eDiscovery to audit and store all meeting data, DLP to inspect meeting content by policy, and lastly, Virtual Asstsiatnt and Sentiment analysis to improve productivity and performance.

Continue reading to learn more about SphereShield for Webex Meetings.

SSWM 1 2

Ethical Wall

In situations where compliance, security, and institutional protocols demand tighter controls and options, Ethical Wall for Webex meetings is there to offer unique capabilities that suit requests from different institutions that are using Webex Meetings.

Controls include

  • Control participants in near-real-time during the meeting:
    • Control participants – avoid users with conflicts joining the same meeting
    • Control activities – block operations that are not allowed

Activities control are context-aware, by blocking operations only when specific groups or users are involved in the meeting which allows for full functionality when possible and aligns with compliance by blocking some features when needed.

  • Near-real-time recording control:

SphereShield for Webex performs near-real-time audio and video analysis on recorded Webex meetings. This will validate meeting attendees using configurable compliance policies.

  • Participant validation before the meeting *Coming soon*

The system verifies the list of invitees for every scheduled meeting, in case of policy violation users will be removed from the invite and the host will be notified.

ew blog 1
Ethical Wall policies

To learn more visit SphereShield for Webex Meetings webpage.

eDiscovery

SphereShield’s eDiscvoery for Webex Meetings solutions audits all meeting data and maintains a user-friendly record of content that can be stored on-prem or as Saas separately from Webex.

Data included that can be searched by:

  • Dates
  • Attendees’ name and type (Internal/External)
  • Text – Audio, Video, Keywords, Labels, Names, etc.
  • Time-frame: by recording every user that has joined/left with the time

ed blog 1 2
eDiscovery portal

To learn more visit SphereShield for Webex Meetings webpage.

Data Loss Prevention 

A real-time DLP solution is crucial to effectively manage and protect your confidential information. This solution ensures that your sensitive data is intercepted and filtered before it reaches the recipient.

SphereShield for Webex Meetings:

  • Inspects meeting content by DLP policies for audio transcript and on-screen OCR from video and screen sharing after the meeting.
  • Inspects meeting chat/files by DLP policies after the meeting 

dlp blog 1 1
DLP Auditing portal

To learn more visit SphereShield for Webex Meetings webpage.

AI Virtual Assistant – AGI

Webex Assistant, a smart, interactive virtual assistant for meetings makes meetings and webinars searchable and actionable. When Webex Assistant is enabled, the host and participants can click on it or use voice commands to record the entire conversation, including the highlights and action items. A live transcript with captions can also be displayed by the assistant.

The Webex Assistant has a variety of interesting and useful characteristics, including the ability to detect up to 100 languages (the maximum number of unique languages that can be used concurrently is 5), and Speaker recognition (who said what and when).

Note that, only paid Webex plans are eligible to get Webex Assistant.

In addition to the native meeting assistant in Webex, AGAT Software has developed a virtual meeting assistant called Agi to enlarge the scope of Webex Assistant and provide automated solutions to some of the most time-consuming tasks including

  • Integration with task management systems such as Asana, Monday.com, Microsoft Planner, and Trello to automatically create tasks based on the detected task name, due date, and assignee from meeting transcript using the AI engine.
  • Generation of meeting summary based on AI module.
  • Detects and Schedules follow-up meetings automatically.
  • Highlights (Agenda, Notes, Decisions, and Summary) detection from the meeting transcript.
  • Set reminders automatically and post messages in Space/Group Chat when the time is due.
  • Publish items from transcripts/highlights/tasks as messages for further discussion.

To learn more about Agi, please visit our Virtual Assistant webpage.

Check out AGI – AI Virtual Assitant in the Cisco Webex AppHub!

AI Sentiment Analysis:

Sentiment analysis allows participants to analyze meetings and chat conversations both with internal and external users to gain communication insights and improve communication by identifying positive/negative sentiments (joyfulness, happiness, neutral, surprise, anger, disgust, or sadness).

Benefits: 

  • Improve employee experience and boost productivity.
  • Spreading positive behavior to other parts of the company.
  • Manage the negative behavior of employees.
  • Improve the remote working experience.
  • Improve customer satisfaction.

Use cases: 

  • Customer Success / Support Managers

Sentiment analysis is an extremely useful tool in the customer service field as it helps with detecting places that need to be improved in any customer-facing situation & prioritizes focusing on top customer service issues.

  • HR Manager

Sentiment analysis helps in facilitating the work of the HR Managers. Based on employee feedback/satisfaction Sentiment Analysis allows HR Managers to promote proactive operations.

  • Employees

Identify intercommunication between employees – use employee reports and Personal Insights to view your relationship with other employees within the organization.

sa blog
Example of Sentiment Analysis reports

To learn more visit AGAT’s Sentiment Analysis solution webpage.

Categories
blog Ethical Wall Microsoft Teams

Information Barriers: Enhance your control over employees’ communications and avoid penalties

image 1 1

In this article, we will talk about deploying Information Barriers for Microsoft Teams to control employees’ ability to communicate with colleagues and external users. 

Table of contents

  1. Information Barriers and complying with regulations 
  2. Information Barriers in Microsoft Teams. Features available and limitations
  3. AGAT’s Ethical Wall solution

1- Information Barriers and complying with regulations 

The concept of ‘Ethical Walls’ was conceived for financial services firms to block the exchange of confidential information between departments or individuals. Back then, firms relied on policies, restricted access, and physical separation on-premise to maintain them. 

Today, it is critical for businesses to understand how they can establish those same barriers virtually in communication platforms, so they can prevent data loss and comply with regulations. Negligence can be reduced with the right policies to proactively restrict and monitor employee activities for unethical or risky behaviors. This is important to comply with legal and commercial rules that are constantly changing and becoming more complex.

Regulations such as Europe’s MiFID or the USA’s FINRA state that financial services organizations must have Ethical Walls in place to restrict communications between people with conflicts of interest. Although it started as a common practice in the financial services sector, the concept of Ethical Walls also exists in other areas such as call centers, journalism, law, insurance, and computer science.

fLdDSP0 bLKKza5JsPY7ys67szqHLMpGx6lazqiUk0P7WMu0syNxzy2N57 h51CXnWWs9CvVturJY wiRnDQoYmpmUFLsQtONL 7IZEhCToeqF67J

2- Information Barriers in Microsoft Teams. Features available and limitations.

In Microsoft Teams, Microsoft’s Information Barriers can determine and prevent the following kinds of unauthorized collaborations:

  •  Adding a user to a team or channel
  •  User access to team or channel content
  •  User access to 1:1 and group chats
  •  User access to meetings
  •  Prevents lookups and discovery, and users won’t be visible in the people picker.

These options may be considered a good start for deploying Ethical Walls but it’s important to point out two issues. First, they’re only available with expensive licenses like Microsoft 365 E5/A5/G5, and second, they have many limitations, including a lack of flexibility to control internal and external communications.

It is true that you can create complete blocks between internal groups, however, often companies want to block specific types of communication in particular scenarios, such as file sharing or screen sharing between certain groups. Microsoft’s Information Barriers don’t adapt well to the different needs of organizations to control communications on this level.

With Microsoft, you also have control over which external domains can communicate with users from your company but it still allows users from these external domains to schedule meetings with your users. 

In addition, Microsoft’s Information Barriers policies don’t work for federated users: If you allow federation with external organizations, the users of those organizations will be able to communicate without any restrictions. This means if users of your organization join a chat or meeting organized by external federated users, then IB policies also won’t restrict communication between users of your organization.

Not allowing flexible control over which internal groups should be able to communicate with specific external domains is a major issue in Microsoft’s native offering. Currently, it’s all or nothing. If one group wants to communicate with an external domain you either federate with that domain completely or not at all. 

3- AGAT’s Ethical Wall solution

AGAT’s Ethical Wall makes it easy to control who can contact whom, allowing for the adjustment of collaboration policies to meet any specific needs a company might have. These rules can be applied not only for internal users and groups but for external communications too. 

Let’s see a case scenario:

You have set an Information Barriers policy in your company to prevent two groups from communicating with each other due to the conflict of interests that exists between their functions.

Two users, Martin and James, are each from a group that is restricted from communicating with the other. With Microsoft Teams, the information barrier works well internally, but if they’re both invited to a meeting hosted externally the wall between them falls, and they are able to join together and communicate. The same limitation would apply to a chat that was initiated externally. 

That’s a big compliance gap, like seeing these two employees that can’t exchange information inside your company walking to an office in another building to talk, and not doing anything about it. 

graphic on how AGAT-s information barriers work on external comms

Sphereshield’s Ethical Wall can block restricted groups from joining a meeting hosted externally or a chat initiated externally. With this solution, they won’t be able to search for each other or join meetings together.

AGAT’s SphereShield offers complete granular control over policies. You can block actions like voice calls, file transferring, chat, video, and screen sharing as a whole or to different groups individually. Different rules can be applied to specific participant types: employees, externals, or guests. The policies can also be set to be reciprocal, so neither part can contact the other, or be one-sided.

SphereShield’s Ethical Wall for Microsoft Teams covers chat, meetings, teams, and channels. With AGAT the policy setting is more precise and controls are easy to handle within a simple and intuitive web interface.

Contact us and get a free trial of AGAT’s SphereShield Ethical Wall

Get a free trial

Sign-up for a free trial and demo with an AGAT expert

    Select your service

    For support please login to our support portal

    Get in touch

    Har-Hotzvim Hi-Tech Park, Jerusalem, Israel

    +972-2-579-9123

    info@agatsoftware.com

    Facebook Twitter Youtube Linkedin

    Compliance

    Ethical Wall

    Real Time DLP

    Archive & eDiscovery

    Recording AI Compliance Analysis

    Productivity

    AI Meeting Assistant

    Channel Management

    AI Sentiment Analysis

    Privacy Policy

    Terms and Conditions

    Resources​

    Company overview

    Partners

    Careers

    Blog

    Contact

    © 2013-2023 AGAT ALL RIGHTS RESERVED