Some products prevent sensitive information from being transferred to devices based on a user or group rather than a device ID. An administrator simply sets mobile policies for the Sales and Marketing groups, or User03, User04 and User07. You can also find solutions that support role-based messaging to meet military usage requirements.
Content-aware DLP is compatible with mobile device management (MDM) solutions. Nothing needs to be installed on the mobile device; the DLP software can leverage MDM configurations to force the device to make a VPN connection to the corporate network. There, the DLP technology scans and analyzes the content and applies policies.
Virtual environments can be protected as well. DeviceLock, for example, offers a data leak protection feature called Virtual DLP, which protects local virtual machines, and session-based and streamed desktops and applications. Virtual DLP supports Citrix XenApp, Citrix XenDesktop, Microsoft RDS and VMware View.