I setup a custom DLP policy for US PII data that generates incident reports if a sensitive information was present in the email. Is there a configuration where if an email is encrypted as an exception to the rule, it will not trigger the report.
The idea is if an email message is encrypted, it will not generate an incident report.
Rule consists of
if message contains sensitive information and shared outside organization
except if message type is encrypted
stop processing additional dlp policies and rules if there's a match for this rule.