Microsoft DLP creditcard too many false positive

Hi all,

I am new to the DLP world and performing some tests in my company. I wanted to discover if/who is sharing credit card numbers, cvv, data expiry, full name and address, because with all the information someone can harm the victim, right? The problem I am having is when people share bank statements containing just credit card numbers, it gets triggered, which is so annoying too many false positives. Is anyone there experiencing the same thing and can assist?

I created two policies and enabled both at the same time.

• The first one is using just the SIT Credit Card Number

• The second one I am using SIT Credit Card Number, All Full Names, All Physical Addresses

   
  

   

Please let me know if you need more information.

Thanks in advance

TZ