ManageEngine Endpoint DLP Plus is an endpoint-focused data loss prevention solution that protects sensitive data on managed endpoint devices from disclosure and theft. The solution provides capabilities for discovering and classifying structured and unstructured sensitive data including intellectual property, PII, health records, and financial information across endpoints. The product uses predefined templates and custom mechanisms such as keyword search, fingerprinting, document matching, and RegEx patterns for data classification. It monitors and controls data transfer methods including USB devices, cloud uploads, email attachments, and browser-based file transfers. The solution blocks unauthorized data transfers, screenshot attempts, and printing of sensitive documents unless watermarked. The platform includes data containerization features that designate trusted applications and automatically label sensitive data emerging from these apps, preventing transfer to unverified applications. It monitors user actions to identify potential insider threats and data disclosure attempts. The solution deploys through lightweight agents that maintain security measures even when endpoints are offline. It provides centralized management with granular policy configuration options that can be remotely deployed. The platform includes reporting and alerting capabilities with audit data for tracking data trends and security events. The solution offers remediation workflows for handling false positives, allowing administrators to review user requests and modify policies. It monitors enterprise and Outlook email addresses to prevent data leakage through email attachments and controls browser usage and third-party cloud service access within the network.