As the use of an employee owned devices is increased in the enterprise, the risk of accidental data disclosure through apps and services that are outside the control of that enterprise such as emails, social networking and cloud is also increasing day by day.
Most of the solutions of this problems try to solve by allowing the employees to switch between apps and personal and work containers that can take to the less optimal user experience. The code-named Enterprise Data Protection (EDP) helps to separate and protects the enterprise apps and data from disclosure risk among both the enterprise and personal devices without changing any components in the apps or the working environments and thus provides the better user experience. Furthermore along with the use of Rights Management Services (RMS), EDP can help to secure the data of the enterprise locally or even when the data is being roamed or shared like when the encrypted content is shared via Outlook or moved via USB devices.
EDP provides the extra security against enterprise data leakage with less impact on the working environment of the employees. It gives the general separation between the enterprise and corporate data. It provides the extra data security for the existing business apps without updating them. It has the ability of erasing the corporate data without erasing the personal data. It emphasis the use of audit reports for tracking problems and remedial solutions. It is integrate with the existing management system to deploy, manage and configure EDP for the company. It is capable to manage Universal Office apps on Windows 10 devices with the use of MDM solution to protect the corporate data. All these can be done only the EDP software is run through the enterprise.
One can turn off the EDP and restrictions going back to the part before EDP has been used in the enterprise without any loss of data. But turning off EDP is highly non recommended because one can turn it back on easily but all the decryption and policy info will be gone forever.