DLP solution E3 with add-ons vs E5

Question

We are looking into implementing a DLP solution which will include labeling documents in SharePoint and Box. From here we would then like to create policies to implement DLP at our organization of about 1600 users which at a minimum will include blocking sensitive emails, blocking sensitive files being uploaded to non sanctioned apps, and auto labeling. Been experimenting with using AIP and MCAS to try and scan files and apply appropriate labels and it has been unsuccessful in detecting and labeling all files in a specific folder in our tenant. Was under the assumption that we had an E5 license but just recently found out that we have and E3 with E5 Security Add-on. I looked at MS Modern Work Plan Comparison - Enterprise US ERP and I believe that we may need at least the E5 Compliance Add-on . Is there where I can find more information about which licenses I would need for this to work?

Answer 1

Here's the document you should refer to for any licensing questions (also check the PDF linked on top): https://learn.microsoft.com/en-us/office365/servicedescriptions/microsoft-365-service-descriptions/microsoft-365-tenantlevel-services-licensing-guidance/microsoft-365-security-compliance-licensing-guidance#microsoft-cloud-app-security