Solution Brief. Archiving from Office 365 for Compliance and ediscovery. 1) Capture Everything



Similar documents
Data Sheet: Archiving Symantec Enterprise Vault for Microsoft Exchange Store, Manage, and Discover Critical Business Information

68% Meet compliance needs with Microsoft Exchange. of companies send sensitive data via .

Cloud Relay Solution. Whitepaper

Addressing Archiving and Discovery with Microsoft Exchange Server 2010

State of Michigan Records Management Services. Frequently Asked Questions About E mail Retention

ARCHIVING FOR EXCHANGE 2013

ediscovery Features of SharePoint 2013 and Exchange 2013 Paul Branson Solution Architect Microsoft

Microsoft Office 365 online archive features and FAQs

Symantec Enterprise Vault for Microsoft Exchange

Data Sheet: Archiving Symantec Enterprise Vault for Microsoft Exchange Store, Manage, and Discover Critical Business Information

Veritas Enterprise Vault.cloud for Microsoft Office 365

MICROSOFT EXCHANGE ONLINE ARCHIVING, DATA RETENTION AND RULE 17A-4 COMPLIANCE DATE: SEPTEMBER 22, 2015

Enhancing Microsoft Exchange & Office 365 Archiving, Retention, and Discovery with Netmail

Symantec Enterprise Vault for Microsoft Exchange

Veritas Enterprise Vault for Microsoft Exchange Server

Symantec Enterprise Vault for Microsoft Exchange Server

Capstone Compliance Using Symantec Archiving and ediscovery Solutions

Enterprise Vault Whitepaper

Archiving Decision Tree

Symantec Enterprise Vault

Data Sheet: Archiving Symantec Enterprise Vault Discovery Accelerator Accelerate e-discovery and simplify review

GFI Archiver Evaluation guide: Online Demo Evaluation Guide

Data Sheet: Archiving Symantec Enterprise Vault Store, Manage, and Discover Critical Business Information

Addressing Legal Discovery & Compliance Requirements

MOC 20342B: Advanced Solutions of Microsoft Exchange Server 2013

Management: A Guide For Harvard Administrators

CA Records Manager. Benefits. CA Advantage. Overview

10 Steps to Establishing an Effective Retention Policy

Death to PST Files. The Hidden Costs of

W H I T E P A P E R. Symantec Enterprise Vault and Exchange Server November 2011

Mimecast Enterprise Information Archiving

MS 20342B: Advanced Solutions of Microsoft Exchange Server 2013

Product Overview Archive2Anywhere Message Stub Management

Enterprise Archive Managed Archiving & ediscovery Services User Manual

CA Message Manager. Benefits. Overview. CA Advantage

Microsoft Exchange 2010 Archiving and the Value of Third-Party Solutions

FIVE TIPS FOR A SUCCESSFUL ARCHIVE MIGRATION TO MICROSOFT OFFICE 365 WHITEPAPER

Setup Guide. Archiving for Microsoft Exchange Server 2007

Archiving, Retrieval and Analysis The Key Issues

SERVICE LEVEL AGREEMENT: Shared Exchange Hosting

A Guide To Retention And UK Compliance Laws

SERVICE LEVEL AGREEMENT

NYS Office 365 Administration Guide for Agencies

Best Practices Series: Cure Your Management Headaches in IBM Lotus Notes/Domino Environments

Mod 9: Exchange Online Archiving

Exchange Server 2010 & C2C ArchiveOne A Feature Comparison for Archiving

The Inevitable Extinction of PSTs

20342 Advanced Solutions of Microsoft Exchange Server

C2C ArchiveOne & Microsoft Exchange Server 2013

Office 365 Compliance and Data Loss Prevention

Approximately 260 PST files totaling 180GB will be included in the pilot. 2. Are the Windows XP clients running XP 64 bit or 32 bit OS?

MICROSOFT EXCHANGE 2013 WHAT EVERY LEGAL PROFESSIONAL SHOULD KNOW

Recovering Microsoft Exchange Server Data

Exchange Managed Folders versus SharePoint for Records Management

MICROSOFT EXCHANGE, OFFERED BY INTERCALL

Records Management and SharePoint 2013

Enterprise Vault.cloud and Office 365 As you move to the cloud, don t forget your archive

Symantec Enterprise Vault.cloud Overview

Eradicating PST Files from Your Network

Outlook . Step 1: Open and Configure Outlook

Symantec Enterprise Vault

Are Mailboxes Enough?

How To Preserve Records In Mississippi

EXCHANGE TO OFFICE 365

SERVICE LEVEL AGREEMENT - Shared Exchange Hosting

Measures Regarding Litigation Holds and Preservation of Electronically Stored Information (ESI)

Solve your PST headaches with or without Archiving

Protecting Business Information With A SharePoint Data Governance Model. TITUS White Paper

Cleaning out Outlook E mail

ILM et Archivage Les solutions IBM

Symantec Enterprise Vault

Understanding Archiving and ediscovery in Exchange 2013

Personal Archiving in Exchange Online

Information Management Policy

GFI Product Guide. GFI Archiver Evaluation Guide

MailStore Server PRODUCT OVERVIEW

White Paper. Solve Exchange Storage Problems Once and For All. A New Approach without Stubs or Links. By Bob Spurzem. April Mimosa Systems, Inc.

Lowering E-Discovery Costs Through Enterprise Records and Retention Management. An Oracle White Paper March 2007

Symantec Enterprise Vault

B a r r a c u d a M e s s a g e A r c h i v e r O u t l o o k A d d - I n U s e r G u i d e. V e r si on 3. 1

GFI Product Manual. GFI MailArchiver Evaluation Guide

Practical tips for managing e mail

About Archiving for Microsoft Exchange Server

Transcription:

Solution Brief Archiving from Office 365 for Compliance and ediscovery Barracuda Message Archiver enhances Office 365 with the additional functionality needed to support sound information governance practices. It enables organizations to meet demanding compliance regulations and to address information discovery requests effectively and easily. Requirements for Compliance and ediscovery will vary based on the industry in which each organization operates. For example, heavily regulated industries such as financial services, healthcare and government have very specific requirement that have to be complied with, and the penalties for non compliance can be severe. However all organizations need to practice sound information governance practices. Microsoft has improved the compliance features within Office 365, and also provides an archive mailbox within Exchange Online. However several key archiving and compliance capabilities are still either limited or missing, meaning that Office 365 is unlikely to meet the wider needs of those organizations that have specific data retention, policy enforcement and ediscovery requirements. In this Solution Brief we identify a number of key areas for Compliance and ediscovery, and show how Barracuda Message Archiver can enhance Office 365 in those areas. We also highlight some additional points to consider when implementing Office 365. 1) Capture Everything Organizations need to make sure they capture and secure a copy of every email message sent or received, and to do this before users have time to amend or delete those messages. Microsoft s Messaging Records Management (MRM) within Office 365 doesn t provide this as a native capability. The way to ensure every email is captured is to place every mailbox across the organization on a permanent In-Place Hold as described in the next section. This is also the only way within Office 365 to capture an accurate list of all recipients for emails that have been sent to distribution lists. This conflicts with the subsequent use of In Place Hold functionality for its original purpose of supporting individual ediscovery searches and responding to legal requests. Barracuda takes an alternate approach and uses the Office 365 journal function to capture and secure a copy of each email in motion at the time it is sent or received. Unlike other solutions which involving pulling delivered mail from individual Office 365 mailboxes using POP or IMAP, Barracuda Message Archiver will not be susceptible to throttling or other Office 365 performance restrictions. The Barracuda approach ensures that an accurate and unmodified copy of every email sent or received, including details of all recipients, will be captured and stored in the Barracuda Message Archiver. 1

Journal Capture Barracuda Message Archiver 2) Keep Everything Securely Organizations will need to keep securely for an extended period of time all the email they have captured, so they can respond to ediscovery and other information requests. Office 365 uses an in place approach to retain an original copy of every email that every user has ever sent or received within that user s mailbox. The user is still able amend or delete their email at any time, even if it has been moved into the their archive mailbox, so to ensure an original copy is kept, all messages must be placed on In-Place Hold. In-Place Hold operates at the individual message level using the Recoverable Items folder (which is not visible to end users), as follows: a. When an email is deleted by the user, it is moved into the Discovery Hold subfolder within Recoverable Items and kept there for the duration of the hold. b. Each time an email is amended by the user, a copy of the email before amendment is added to the Versions subfolder within Recoverable Items. c. All emails that have not been amended or deleted are simply retained in the user s mailbox for the duration of the hold. This is a complex process to understand and manage, as it operates within the production email environment. The original copies within each mailbox will be spread across multiple folders and there can be multiple versions of an email within a mailbox. A similarly complex process is followed for emails in public folders. As the Recoverable Items folder is also used for a number of other processes (such as audit and calendar logging) it can be difficult for organizations to guarantee and to demonstrate for compliance purposes that they are actually retaining a complete and accurate copy of every email sent or received. Barracuda s Message Archiver takes an alternative approach, by capturing a single immutable copy of every email. It minimizes risk by storing this copy outside the production email environment in a dedicated secure archive repository. This straightforward approach ensures that original email data will be stored securely for as long as needed without risk of corruption or deletion. Compliance is easy to demonstrate, and end users can have read only access to search and retrieve email themselves at any time from any device. 3) Keep Everything For As Long As Needed Having captured their email and stored it securely, organizations then have to make sure they retain it for as long as it is needed. An increasing number of organizations are implementing compliance polices for message retention and deletion to ensure all relevant information remains available to support ediscovery and other information requests. This may be driven by specific industry or legal requirements, or as part of an overall information governance strategy. Retention policies in Office 365, despite their name, do not ensure that email is retained for as long as required. Their purpose is to ensure that data is deleted after a specified period, and they are not able to prevent users from deleting or amending email at any time before that. 2

Retention policies are limited to selection based on age or location, and may not provide the flexibility or granularity many organizations require to meet their individual compliance policies. In order to ensure that all data is retained for the specified period, once again mailboxes must be placed on In Place Hold for that duration. It is also useful to note that although data stored in Public Folders can be placed on hold, it is not possible to apply retention policies to these folders. Therefore there is a risk of this data being retained indefinitely. Retention policies within Barracuda Message Archiver manage both the retention and deletion of each message. They will ensure that an original copy of every email sent or received will be retained in the archive for the entire specified period, and then deleted at the end of that period. These policies are highly configurable and cover a wide range of criteria, such as message type, content, source, addressees, age, and attachments. Therefore they can meet the most complex compliance and business needs. Barracuda can also manage the retention and deletion of data which has been captured and archived from public folders. 4) Respond to Information Requests When responding to ediscovery and other similar information requests, organizations will start by identifying an initial set of relevant data. This set must be put on legal hold to prevent it from being amended or deleted for as long as it takes them to refine and complete that request, regardless of any other retention rules that may apply to the data concerned. The In-Place Hold facility in Office 365 can be used with In-Place ediscovery or the Office 365 Compliance Center to support individual search or discovery exercises. It can identify and secure the specific set of data that is relevant to each particular investigation for as long as is needed. However as we have seen earlier, many customers may already have applied a blanket In Place Hold to every mailbox as a means of ensuring they capture and retain an accurate record of all data sent and received. This will conflict with the subsequent use of In Place Hold functionality for its original purpose of supporting individual ediscovery searches and responding to legal requests. This conflict can cause confusion and lack of clarity, particularly with demonstrating chain of custody. The use of In-Place hold can result in multiple versions of an email being stored in the Recoverable Items Versions subfolder, so customers must ensure their search only returns original versions from this location. Barracuda Message Archiver also provides extensive search and discovery capabilities, and can apply legal holds to selected data on an individual case-by-case basis, however it differs from Office 365 by managing this outside the operational environment on a separate secure archive copy of the data. This best practice approach means that there is no conflict between data retention for operational compliance and legal hold for search and discovery exercises. As a result it is easy to demonstrate the accuracy and completeness of data returned for each case, and to provide the chain of custody for that data. 3

5) Don t Forget Instant Messaging Instant messaging (IM) is being increasingly adopted for communicating internally within many organizations, as well as now being used externally between organizations. In many cases it is now used as an alternative to more traditional email communication, so just as with email there is a need to retain all IM content and to make it available for search and retrieval. Industry and business regulations are recognizing this trend, and many are now requiring organizations to accurately capture and preserve all instant message conversations for legal and compliance purposes. They may need to respond to ediscovery requests on this data, as well as complying with the existing range of laws and regulations such as FOIA that require message archiving and retrieval. Skype for Business is Microsoft s Office 365 solution for providing instant messaging and conferencing to businesses of all sizes, and is a central component in many Office 365 plans. However it does not include the ability to capture and archive or retain a copy of these conversations securely. Office 365 can be configured to store IM conversation history within the Conversation History folder in each end user s Exchange Online mailbox, but this has the same limitations we have already discussed for email for retention and secure storage. Users are able to modify or delete data unless the entire history folder is placed on In-Place Hold. Barracuda Message Archiver captures and archives a copy of all IM conversations, conferences and other content from the Conversation History folder. This data is then kept securely alongside other archived content such as email messages and attachments, meaning that all message data is available in one place for end users to search and retrieve, as well as providing a single solution for organizations to meet their compliance and ediscovery requirements for both email and IM. 6) Don t Forget to Keep Costs Under Control As we have seen, in order to fully meet Compliance and ediscovery requirements using Office 365, all mailboxes across the organization must be placed on In Place Hold. The In-Place hold capability is only available for mailboxes which are on the Office 365 E3 plan or above, or on Exchange Online Plan 2. Providing an E3 or a P2 license for every user in an organization can represent a considerable additional cost, especially if they do no need the other advanced features enabled with these licenses. To put this into context, the cost of Exchange Online Plan 2 is double that of 4

Plan 1, and the Office 365 E3 plan is three times the cost of the E1 plan. Barracuda Message Archiver can provide all Archiving, Retention, Compliance and ediscovery functionality for all users within an organization at a single price. Because it does not require all users to be on higher level Office 365 licenses, it can be a very cost effective solution. Conclusion Compliance and ediscovery capabilities provided within Office 365 may be adequate for some organizations, but the in-place approach Microsoft takes for long term email retention and preservation means these capabilities have inherent limitations. They can be complex and expensive to operate, and are unlikely to meet the needs of organizations with more demanding compliance and discovery requirements. Barracuda Message Archiver enhances Office 365 with the additional functionality customers will need to meet demanding business and legal requirements. It follows the accepted best practice approach for compliance by archiving an original copy of every email into a separate immutable store for long term retention and preservation. Comprehensive retention and discovery capabilities, together with ease of operation and use, combine to make this a cost effective solution. Solution Brief US 1.0 Copyright Barracuda Networks www.barracuda.com Barracuda Networks and the Barracuda Networks logo are registered trademarks of Barracuda Networks, Inc. in the United States. All other names are the property of their respective owners.

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information