Skip Navigation

Setting up 
Windows
 Information Protection for 
Windows 10
 devices

You can set up 
Windows
 Information Protection (WIP) for 
Windows 10
 devices when you want to:
  • Separate personal and work data on devices and be able to wipe only work data
  • Prevent users from sharing work data outside of protected work apps or with people outside of your organization
  • Protect data even if it is moved to or shared on other devices, such as a USB key
  • Audit user behavior and take appropriate actions to prevent data leaks
When you set up WIP for devices, you specify the apps that you want to protect with WIP. Protected apps are trusted to create and access work files, while unprotected apps can be blocked from accessing work files. You can choose the level of protection for protected apps based on how you want users to behave when they share work data. When WIP is enabled, all data sharing practices are audited. For more information about WIP, visit protect-enterprise-data-using-wip
The apps that you specify can be enlightened or unenlightened for enterprise. Enlightened apps can create and access work and personal data. Unenlightened apps can only create and access work data. For more information about enlightened and unenlightened apps, visit enlightened-microsoft-apps-and-wip.html.