Factory Resetting Android devices wipes any content and settings on the phone and resets the device to it's factory settings. In organizations where corporate data is stored and accessed using mobile devices, IT admins must ensure these devices are not factory reset to prevent the loss of corporate data. Another reason why organizations must prevent users from factory resetting Android devices is to ensure the devices are managed at all times, since resetting the device also means all the configurations, apps and contents distributed using MDM will be deleted and the devices will be unmanaged.
By configuring the below mentioned restriction IT admins can ensure MDM does not allow factory reset on enrolled devices.
Devices running Android 5.0 and above by default support Factory Reset Protection (FRP) which requires the user's Google account credentials upon activating a hard reset device. While FRP is important to reduce mobile theft and strengthen data security, it also causes problems in organizations that provide their employees corporate Android devices. To overcome this challenge, Mobile Device Manager Plus allows organization's to configure Enterprise Factory Reset Protection (EFRP).
With EFRP, organizations can create a common corporate Google account and enter it instead of the user's Google account details to access the factory reset device. This ensures that even if the employee leaves the organization after resetting the device, it can be accessed and re-used by the organization.
Refer this document for the steps to configure EFRP on your corporate Android devices.