Customising DLP Policies
The DLP (Data Loss Prevention) policy page gives you fine-grained control over what types of data the extension watches for.
Privacy Controls
These are general data types. All are on by default:
| Toggle | What it detects |
|---|---|
| Sensitive Keywords | Words from your sensitive keywords list |
| Secrets | API keys, tokens, passwords (e.g., OpenAI keys, AWS keys, GitHub tokens) |
| Credit Cards | Visa, Mastercard, Amex, Discover card numbers |
| Email Addresses | Any email address pattern |
| IP Addresses | Network addresses like 192.168.1.1 |
Region-Specific Controls
These detect government-issued ID numbers for specific countries. They are off by default (except IBAN) since they are only relevant if you work with data from those regions.
| Country | Toggle | What it detects |
|---|---|---|
| United States | Social Security # (SSN) | 9-digit Social Security numbers |
| Australia | Tax File Number (TFN) | Australian tax identifiers |
| Australia | Medicare Number | Australian Medicare card numbers |
| Canada | Social Insurance # (SIN) | Canadian social insurance numbers |
| Europe | IBAN | International bank account numbers |
| United Kingdom | NHS Number | UK health service numbers |
| United Kingdom | National Insurance # (NI) | UK national insurance numbers |
| India | Aadhaar Card Number | 12-digit identity numbers |
| India | PAN Card Number | Permanent account numbers |
To change these settings:
- Go to the Policies tab
- Expand "Data Loss Prevention"
- Expand "Privacy Controls" or "Region Specific"
- For region-specific, expand the country you need
- Toggle each detection type on or off
The counters (e.g., "5/5", "7/7") show how many toggles are active out of the total in each section.
info
See How to adjust what DLP looks for to learn how to customise these controls.