I have a customer that is considering replacing a third party spam filter with EOP. Currently, if an email is blocked due to DLP policies, an admin can log into the admin center, review the message, and release it if it was a false positive, allowing the message to be delivered to the intended recipient. Is this possible with O365? I know I can block emails for DLP policies, I know that admins can be notified that an email was blocked due to DLP policies, but I don't know that an admin can then release that message if it is, indeed, a false positive.
So, a blocked message cannot be released by an admin. It can only be overridden by a user. Defeats the purpose of the DLP to prevent users from sending out protected information maliciously if they can override the DLP. Might be a feature Microsoft should consider.