The Enterprise Data Loss Prevention (E-DLP) and Prisma Browser Integration solves the challenge of maintaining consistent data protection across different security products by unifying data classification, management, and visibility. Instead of duplicating effort, your data security administrators can leverage their investment in creating and tuning data profiles and classifiers across both Enterprise DLP and Prisma Browser. The integration dynamically synchronizes profiles and classifiers, ensuring updates made in Enterprise DLP automatically reflect in Prisma Browser rules.

For Prisma Browser, your data security administrators can configure a Enterprise DLP data profile for Local Detection or for Cloud-Assisted detection. Data profiles configured for Local Detection support only regex-based detections. Prisma Browser evaluates traffic that matches against Local Detection data profiles directly on the browser and only Prisma Browser can use Local Detection data profiles. Conversely, your data security administrators can configure Enterprise DLP Cloud Assisted data profiles with all supported detection methods. Prisma Browser intelligently routes classification requests based on profile type, optimizing security, and performance.

This unified approach extends protection beyond traditional file transfers to include last-mile controls like clipboard operations, screen sharing, typing guard, and data masking. Your organization gains comprehensive data protection with reduced administrative overhead while benefiting from deployment flexibility that can reduce dependency on Explicit Proxy for SaaS apps.

Enterprise Data Loss Prevention (E-DLP) introduced new app support for the following:

When operating across multiple geographic regions, your organization needs to ensure that sensitive data remains within specific regional boundaries to comply with local data protection laws. Regional Support for Evidence Storage enables your data security administrators to configure region-specific evidence storage buckets for Enterprise Data Loss Prevention (E-DLP) incident evidence files, replacing the previous single-bucket limitation. Your data security administrators can now designate specific AWS, Azure, or SFTP storage buckets for each incident region, ensuring that Enterprise DLP automatically stores evidence files from DLP incidents in their appropriate regional storage location.

Your data security administrators can now manage evidence storage on a region-by-region basis, configuring each bucket with the appropriate cloud provider credentials and permissions. When Enterprise DLP detects an incident, it automatically routes the evidence file to the storage bucket assigned to that incident's region. This preserves the chain of custody while maintaining compliance with regional data sovereignty requirements. If a region has no configured storage bucket, Enterprise DLP won't provide the option to download evidence for incidents in that region, ensuring strict adherence to your data residency policies.

Enterprise DLP continuously monitors the connection status of your configured regional buckets and notifies your data security administrators immediately if any connection issues arise. These notifications include detailed diagnostic information about the connection failure, allowing quickly remediation of any storage configuration problems. Your data security administrators can also manually test bucket connections at any time to verify your storage configuration is working properly. This comprehensive approach to evidence storage management provides the flexibility and control your organization needs to maintain regulatory compliance while effectively managing security incidents across your global footprint.