Data control enables you to reduce accidental data loss from workstations by monitoring and restricting the transfer of files containing sensitive data. You do this by creating data control rules and then adding the rules to the Data control policies.
You can monitor and control the transfer of files to specified storage devices (e.g. removable storage device or optical drive) or by specified applications (e.g. email client or web browser).
To enable you to quickly define and roll out a data control policy, SophosLabs maintain a library of sensitive data definitions (Content Control Lists). The main focus for this library is personally identifiable information, but it also covers other common data structures. You can use Content Control Lists in Enterprise Console, as described further in this section.