Tisski's DataShield is an addon for Dynamics365 that extends the functionality of security roles to allow the exporting of some data to excel but blocks the export of personal data. This enables organizations to widely grant the Export To Excel permissions without exposing themselves to the risk of accidental data leaks. DataShield can help your organization stay compliant with the EU's GDPR and other data protection laws around the world.
All CRM Entities and attributes that are designed to hold personal data are "blacklisted" by default. If there are other entities and attributes in your organization that hold personal data, these can also be added to the blacklist.
When data from a view or grid is exported to Excel, all "blacklisted" fields are blanked out.
Any information that can be used to uniquely identify an individual is considered personal data. This includes email addresses, phone numbers, names, etc. Information that identifies companies is not considered personal data and is exempt (e.g. - Reception phone, generic email addresses, registered office address, etc.)
Access to personal data within CRM is tightly controlled. However, once this data moves out of CRM and into Excel, it can be lost in a variety of ways, including being accidentally sent to the wrong recipient, loss of device, etc. According to the UK's Information Commissioner's Office (ICO), 4 out of the 5 biggest causes of data security incidents are such human errors. By removing the possibility of data being exported to Excel, you can get rid of one of the biggest security headaches in your organization.