Bart, excellent post! It reminds me of a question I had around this subject when we were launching our employee community (posted here). It is true that capturing conversations an information in a platform such as Jive can actually be more secure than email alone.
This was also a point that helped us win over Legal and HR when we were working to get it approved. Using a community can be looked at as risk mitigation. For some industries, that could help generate some senior level support.
I was wondering about these last two items
You also make it harder for someone to take with them.
And you get an audit trail of who has read and downloaded what.
Did you do a custom implement? Where do you collect the audit trail?
Regarding the first point, it is laborious for someone to go through all of the Jive conversations where something of interest was said and download it to their machine. Far harder than copying their Exchange PSTs.
Regarding the second point, if you activate the full tracing Jive (it is not set by default) you will capture all events in a log. It is this log that is used for generating Analytics using the Jive Analytics module. And is this log that will allow you to see what the person has done. I don't know if there is a stardard Jive interface for showing this as well. But the log captures views (unless my team has misinformed me). And so when someone leaves the group and you suspect that they have taken material, you can look at the logs and see if in the last few days their activity level spiked. Again, you have no trace that they copied their PSTs.
Now, there is a fine line here on personal data protection. A company has the right to look at what an individual has done if they suspect that there has been a breach. They do not have the right to report all activites for all users on a monthly basis.