Forum Discussion
DLP Policy Rule "U.S. Physical Address" exclusion
If your policy is scoped to Exchange only, you should be able to add some exclusions to the corresponding rule(s). I.e. NOT "subject or body contains..."
Or you can consider creating a custom SIT and configure it to ignore the disclaimer/signature: Common usage scenarios for sensitive information types | Microsoft Learn
Thank you for this most excellent reply.
I believe I understand how to implement your first suggestion. However, while I was doing it, I considered what this might result in. I believe this would make every email with our address or PO box end up being excluded. If so, this isn't what I'm looking to have happen.
I'd like our address or PO box to not be considered as a "U.S. Physical Address" but for all other addresses to be considered.
I've tried to implement a custom SIT. All Regular Expressions I've found online fail both in testing at Purview and at regex101's site. Ones that do work on regex101 have illegal functions at Purview. I'll continue today to test more and try to get a better understanding of what the issue is. I can't use a custom SIT until I find a regex that works.
I wish I could just copy and edit (or just edit) the Microsoft U.S. Physical Address that's built in. It works perfectly. I'm thinking more and more about asking over 100 people to take out our address from the signature.
Thanks again for your reply.
You should be able to create a copy of the built-in U.S. Physical Address SIT and edit it, though you can only do this via PowerShell, not the UI. https://learn.microsoft.com/en-us/purview/sit-modify-a-custom-sensitive-information-type-in-powershell
And yes, it's an overkill for a small company, you can probably come up with an acceptable workaround in the signature itself much easier.
Thanks again.
After some setup, I was able to export the Microsoft Rule Package to .XML. Doing a search of the text, the only mention of "address" is IP. No physical address stuff in this one. I'll work with it more tomorrow. I have hope. But it's very small. :)
