Office 365 has always had a concept of access controls based on users and groups. Microsoft has now taken the concept much further to restrict access not just based on identity but also device profile and location.
Using a set of policies in Office 365 that control access to SharePoint and OneDrive documents, Administrators will be able to restrict access to documents based on IP address or network location. For example, this would allow administrators to restrict sensitive documents from access outside of the corporate network.
Enhanced conditional access controls encryption controls and site classification in SharePoint and OneDrive 2