Background

The SphereShield Compliance App is an Azure App which provides capabilities for the CASB API Adapter to use the user Teams & Graph Token.

This can be used to update user messages (the sender and the recipient) . Before using the compliance app, the API was limited to deleting the message only on the recipient side using update policy which is targeted for DLP scenarios.

With the compliance app, we are now able to edit the sender messages even if chat has started externally.

How it Works

The Compliance App is a Web App/API, which is used to retrieve internal users' tokens that enable us to edit/delete messages in a way that even the original sender cannot see - which is a stronger content deletion than offered by Microsoft.

Setup

Please refer to the setup guide here: