What action does a DLP system take to stop users from copying files from shared drives?

A Data Loss Prevention (DLP) system is designed to protect sensitive information and prevent data breaches. In the context of stopping users from copying files from shared drives, the primary action taken by a DLP system is to block the unauthorized transfer or copying of sensitive files.

When a DLP system detects that a user is attempting to copy or transfer a file that falls under its data protection policies, it immediately intervenes by preventing the action from being completed. This blocking mechanism serves to safeguard sensitive data from being leaked or accessed inappropriately, ensuring that only authorized individuals can handle certain types of information. The objective of the DLP system is to enforce compliance with data protection laws and organizational policies, effectively mitigating the risk of data loss or exposure.

Other actions such as alerting users or monitoring activities provide valuable oversight and insight into data management practices but do not actively prevent users from taking potentially harmful actions like copying sensitive files. Likewise, auditing tracks access and usage but does not stop the action itself. Blocking is the definitive measure taken by a DLP system to ensure sensitive data remains secure.