Configuring monitoring settings
Effective data monitoring and detection controls help prevent unauthorized access to sensitive information. Data governance technologies enhance security by detecting sensitive data and preventing accidental exposure.
Coro User Data Governance scans outgoing communications in real time, detects sensitive information, and raises User Data Governance tickets to alert admin users if it is sent to unauthorized recipients.
note
When a new workspace is created, all User Data Governance options are disabled by default. Permissions settings take effect after monitoring is enabled for one or more User Data Governance options.
To configure data monitoring:
- Sign in to the Coro console .
-
From the sidebar, select
to access the
Control Panel
.
-
Select
User Data Governance
:
-
Select
Monitoring
.
If data privacy parameters are not configured, Coro shows a banner page prompting you to set up parameters:
If data privacy parameters are configured, the Monitoring tab shows your selected parameters:
The Monitoring tab consists of the following sections:
Privacy sensitive data
The Privacy sensitive data section lets you create a data privacy configuration tailored to your organization’s needs. Based on your selected industry, Coro automatically selects the sensitive data types to monitor for access and exposure within email and shared cloud drive data. This streamlines data privacy setup and enables:
- Industry-based configuration : Select your industry to tailor data privacy settings to your organization.
- Automated sensitive data type recommendations : Coro automatically selects sensitive data types based on your industry to help reduce ticket fatigue by minimizing unnecessary ticket generation. For more information, see Sensitive data types assigned per industry .
- Configuration customization : Modify industry selections and data types to fit your organization’s needs.
For information on the sensitive data that Coro recognizes, see Sensitive data recognized by Coro.
For information on sensitive data type tickets, see Sensitive data tickets.
Creating a data privacy configuration
Use the Privacy sensitive data section on the Monitoring tab to create a data privacy configuration tailored to your organizational requirements.
Coro automatically assigns sensitive data types based on your selected industry.
To create a configuration:
-
From the
Monitoring
tab, select
SET UP PARAMETERS
:
Coro opens the Select industry dialog:
-
Enable the industries applicable to your organization.
note
Use Search... to filter the list.
-
Select
SAVE
to create your data privacy configuration:
Coro displays your configuration and recommended data types:
note
Select additional sensitive data types from the Other data types section to tailor detection for your organization.
Editing a data privacy configuration
Edit an existing data privacy configuration to modify industries and sensitive data types.
Editing industries
Edit industries defined in an existing configuration from the Selected parameters pane.
To edit industries:
-
Select
Edit
:
Coro opens the Select industry dialog.
-
Enable or disable additional industries.
note
Use Search... to filter the list.
-
Select
SAVE
to update your data privacy configuration:
Coro displays your updated configuration:
Editing sensitive data types
Edit sensitive data types defined in an existing configuration from the Privacy sensitive data pane.
Important
Editing your sensitive data types overrides the recommended selections made by Coro.
To edit sensitive data types:
- In Recommended data types , enable or disable sensitive data types preselected by Coro.
-
In
Other data types
, enable or disable additional sensitive data types not preselected by Coro.
note
Coro automatically saves and applies your changes to sensitive data types.
Security and business sensitive data
The Security and business sensitive data section allows you to enable monitoring of additional sensitive data types that are important to your individual organization.
Coro monitors the following Security and business sensitive data:
- Passwords : Monitors for potential password exposure.
- Certificates : Monitors security certificate files, such as SSL certificates, which are used to establish secure connections between web servers and browsers.
- Source code : Monitors source code files (such as * .md, * .yaml, * .sh, * .slx, * .mdl, * .m, and * .json).
- Data objects with specific keywords : Identifies and matches defined keywords in email and shared file content, including subject, body, and attachment filenames. Keyword matching is case validated, and Coro removes duplicate keywords, keeping only the lowercase version. Email domains and sender/recipient names are not used for keyword matching.
- Specific file types : Monitors files added as email attachments and in shared drive content that match one of the defined file extentions.
Sensitive data types assigned per industry
Coro User Data Governance and Endpoint Data Governance automatically assign sensitive data types to your data privacy configuration based on your industry:
note
This table does not cover all industries and might not address every scenario or requirement. Admin users must ensure that the data types they select in their Coro data governance configuration meet their organization’s needs.
| Industry | Data type |
|---|---|
| Accounting services | Personal data |
| Agriculture and food | Personal data AND credit card data |
| Automotive | Non public data |
| Business and marketing | Personal data |
| Business services | Personal data |
| Colleges and universities | Non public data AND personal data |
| Construction | Personal data |
| Consulting | Personal data |
| Consumer services | Personal data |
| Education | Personal data |
| Energy, utilities, and waste | Personal data AND credit card data |
| Finance | Non public data |
| Government | Personal data |
| Health | Health data AND personal data AND credit card data |
| Holding companies and conglomerates | Personal data |
| Hospitality | Personal data AND credit card data |
| HR | Personal data |
| Insurance | Non public data |
| IT services | Personal data AND credit card data |
| Law firms and legal services | Personal data |
| Manufacturing | Personal data |
| Media and internet | Personal data AND credit card data |
| Minerals and mining | Personal data |
| Organizations | Personal data |
| Pharma | Health data AND personal data AND credit card data |
| Real estate | Personal data |
| Retail | Personal data AND credit card data |
| Software | Personal data AND credit card data |
| Telecommunications | Personal data AND credit card data |
| Transportation | Personal data AND credit card data |