Learn about the factors that can trigger a Data Protection policy in Symantec Email Security.cloud in the following situations:

• An email has triggered one or more Data Protection policies.
• A newly created Data Protection policy is not functioning as expected.
• An existing Data Protection policy appears to be ineffective.
• Emails are being blocked due to a Data Protection rule.
• A regular expression (Regex) rule is unexpectedly triggering on an email message.

If the email in question is less than 14 days old, our team can review the available message logs to identify the exact Data Protection (DLP) policy match details. This includes the specific content or attributes within the email that triggered the Data Protection rule.

If the email is older than 14 days, the logs will no longer be available due to the standard 14-day log retention period. In such cases, we request that you reproduce or collect a new sample of the email within the active log retention timeframe so that a thorough investigation can be conducted.

Note: Data Protection administrators are exempted from the policies.

For further clarification or to obtain detailed information about the content that triggered the Data Protection policy, please reach out to Broadcom Technical Support for assistance.