Rencore
Product · Ready-to-go Governance

Pre-built Policies

602 governance policies covering security, costs, sprawl, operations, and compliance, pre-built per connector, severity-graded, with recommended policies active by default.

Published For M365 Product Owner, IT Admin, CISO
Book a demo Start free trial

Pre-built Policies are Rencore's curated catalog of 602 detection rules tuned to each connected service. Each policy has severity, category, target service, a recommended-action description, and an is_recommended flag. Recommended policies activate automatically on the first scan, so the platform produces meaningful findings before any custom configuration.

What gets shipped

The 602 policies break down roughly: ~200 covering Security and External Access, ~150 covering Sprawl and Operation, ~100 covering Costs and Adoption, ~80 covering AI-specific scenarios across Claude, OpenAI, GitHub Copilot and similar tools, and the remainder covering connector-specific operational concerns like mailbox quotas, redirect rules, or workflow execution failures.

How they run

Each policy evaluates every relevant object in the tenant against its rule on every scan cycle. A SharePoint policy looks at every site collection; an Exchange policy looks at every mailbox; a Claude policy looks at every workspace, user, and API key. Matching objects appear as violations with severity, description, recommended action, and a link to the affected object.

Violations feed dashboards, reports, segments, and automations, so the same finding can trigger a Teams notification, surface in this week’s scheduled report to compliance, and queue an approval-gated remediation in the same cycle.

Customizing without forking

A pre-built policy is a starting point, not a hard contract. Each policy is editable, you can change severity, refine the condition, tune the description, or disable it entirely. Custom policies use the same engine and live alongside pre-built ones in the same library. No fork, no separate “custom rules” experience.

Frequently asked questions

How do Rencore policies work?
Rencore ships with hundreds of pre-built policies that detect governance violations across every connector, oversharing, sprawl, cost overruns, security risks, and compliance gaps. Policies run on a continuous schedule, evaluate each discovered object against configurable rules, and flag violations with severity (High, Medium, Low), category, and a recommended action.
What is Rencore governance?
Rencore governance is a SaaS platform that continuously monitors your Microsoft 365 tenant for policy violations, configuration drift, and security risks across SharePoint, Teams, Power Platform, Copilot, and AI Agents. It automates compliance evidence collection, surfaces oversharing and sprawl, and provides actionable remediation workflows, reducing manual audit effort by up to 80%.
How does Rencore detect oversharing?
Rencore scans sharing permissions across SharePoint sites, OneDrive folders, and Teams channels to identify resources shared with external users, anonymous links, or groups broader than intended. It flags violations against your organization's sharing policies and provides one-click remediation to revoke or restrict access, before sensitive content reaches the wrong audience.

Trusted by

MAPALBAMVille de LuxembourgWACKERGRUNDFOSAMGENOsramLufthansaHoneywellThyssenKruppSunrisePattern

See Rencore in your tenant

Connect your environment in minutes and surface the governance findings that matter on day one.

Try Rencore for free Book a demo