Can I prevent eDiscovery for sensitive SharePoint documents?

We have our email and SharePoint environments in the cloud with O365. We are  just starting to use eDiscovery. We do have some documents in SharePoint that have a higher security placed on them and we have set access to them accordingly.
What I want to find out is there a way to exempt these documents from an eDiscovery search? If not, will the elevated access requirement to the documents prevent them from being read by the person doing the search (providing they do not have required access) even if they are found in the eDiscovery?
John WaterAsked:
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Vasil Michev (MVP)Commented:
You can limit eDiscovery to specific sites, or exclude specific sites, by using the co-called "compliance security filters" feature:

If you want to restrict access to specific documents and not an entire site, you can use RMS/AIP encryption to render it "inaccessible" to the search index.

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
Jamie McAllister MVPSharePoint ConsultantCommented:
It should also be noted that a user will never be able to see content that they aren't allowed to. If permissions preclude viewing of a given sensitive file for a user, eDiscovery will not highlight that document for the user either.

Search is also security trimmed in a similar way.
John WaterAuthor Commented:
Jamie and Vasil,

Thank you both for your input. I would like to confirm my understanding of each -

I can use the information in the link from Vasil to set up filters to limit WHERE an eDiscovery search would look, correct?

From Jamie's input, if permissions to a site, folder, etc. were set up so that I cannot access them, my eDiscovery search would never produce them as a product of my search, no matter if I had filters or not, correct?
Is this true no matter my role, Compliance Administrator, Global Admin, etc.?
If this is accurate, then the same eDiscovery search criteria could have different results for two different staff members with different levels of data access, correct?

Thank you,
Powerful Yet Easy-to-Use Network Monitoring

Identify excessive bandwidth utilization or unexpected application traffic with SolarWinds Bandwidth Analyzer Pack.

Jamie McAllister MVPSharePoint ConsultantCommented:
Hi swfwmd2,

I can confirm that search results will be different depending on a users access rights.

John WaterAuthor Commented:
Even though I do not have access to a file when I navigate to it (purposely set up this way), I can find it in an eDiscovery search since I am a global admin. Is this expected and will the implementation of "compliance security filters" block me from finding it when I do an eDiscovery search?

Thank you
Vasil Michev (MVP)Commented:
It's expected, as eDiscovery runs as a "system" process. The only way that I know of to restrict what data can Be accessed via eDiscovery is Compliance Security Fitlers, so try them out.
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Microsoft SharePoint

From novice to tech pro — start learning today.