Administrators can now allow-list individual senders / recipients or entire domains from DLP inspection.

Preventing leakage of sensitive data requires granular policy definitions and exceptions.

An important part of the policy is the scope of its different rules. Many times, sensitive data can be shared with some recipients but under no circumstances with others.

Avanan now allows administrators to exclude emails from DLP inspection based on their sender / recipient email address or domain. Emails that match the exclusion criteria will be automatically flagged as not violating the DLP policy.

Defining these exceptions can be done in two places:

  1. In the context of a specific detection - from the email page
  2. From the DLP Allow-List page, under Configuration > DLP Allow List

Note – this feature is being deployed gradually. You should see it in your portal within the next week.