SaaS Security with Enterprise DLP

Learn about the additional capabilities you get when you purchase SaaS Security with Enterprise DLP.
SaaS Security DLP (Classic) already includes Data Loss Prevention (DLP) capabilities. DLP is a set of tools—such as predefined data patterns, expressions, and proximity keywords—to enable you to protect sensitive information against unauthorized access, misuse, extraction, and sharing.
However, with
SaaS Security DLP
, the DLP service is more comprehensive. SaaS Security DLP introduces data profiles, multiple confidence levels, advanced boolean operators, pattern cloning, Unified DLP Classification, and new Dashboard widget and filters. SaaS Security DLP enables you to combine multiple data patterns in numerous ways to improve match results (and filtering) so you can find what you’re looking for and take action. In fact, when using the provided advanced boolean operators to build advanced query logic, you can combine data patterns to match on any or all patterns, check for a certain frequency threshold, or check for cases where one pattern is matching while another pattern isn't.
SaaS Security with Enterprise DLP
offers greater protection against data loss. With SaaS Security with Enterprise DLP, you’ll have the complete set of DLP capabilities—
exclusive
access to data patterns and data profiles that are not included with SaaS Security DLP.
SaaS Security API
Capability
SaaS Security DLP (Classic)
SaaS Security DLP
SaaS Security with Enterprise DLP
40*
40*
approximately 965*
11*
17*
including GDPR, Profanity, CCPA, and PII
Yes
Yes
Yes
Yes
Yes
Yes
Yes
Yes
Predefined data patterns only
Yes
Yes
Yes
*
Numbers are subject to change.

How Can I Try SaaS Security with Enterprise DLP?

All newly provisioned SaaS Security tenants with an Enterprise DLP license on any other platform (For example, Prisma Access or NGFW) receive
SaaS Security DLP
by default; otherwise, newly provisioned tenants receive
SaaS Security DLP (Classic)
.We are in the process of replacing SaaS Security DLP (Classic). All existing SaaS Security tenants will eventually receive
SaaS Security DLP
automatically. You do not need to request SaaS Security DLP. For optimal system performance, SaaS Security DLP will be rolled out incrementally, though you can get SaaS Security DLP immediately by signing up for a trial of
SaaS Security with Enterprise DLP
. To request a trial, contact your Palo Alto Networks Sales Engineer (SE).
After your request is approved and
SaaS Security with Enterprise DLP
is activated, you will receive an email and the SaaS Security API
Dashboard
displays a trial banner. In the meantime, you can continue using SaaS Security API as usual. If you have any questions about SaaS Security with Enterprise DLP, don't hesitate to contact your Palo Alto Networks Sales Engineer (SE).

Why Do I See a Lock Icon?

The SaaS Security web interface displays all predefined data patterns and data profiles irrespective of your having
SaaS Security with Enterprise DLP
. If you do not have SaaS Security with Enterprise DLP, SaaS Security API uses a lock icon to highlight data patterns and data profiles that require SaaS Security with Enterprise DLP. Similarly, if your policies use those same data patterns and data profiles, a lock icon displays.

Recommended For You