Nightfall Documentation
  • Data Detection and Response
  • Posture Management
  • Data Exfiltration Prevention
  • Data Encryption
  • Developer APIs
  • Data Classification and Discovery
  • Welcome to Nightfall Documentation
  • Release Notes
    • Release Notes 2025
    • Release Notes 2021-2024
  • Introduction
    • Why Cloud DLP?
    • Introduction to Nightfall
    • Nightfall Overview
    • Cloud-native DLP vs. CASB
    • How Nightfall Works
    • Reasons to Choose Nightfall
    • Benefits of Nightfall
  • Compliance
    • How Nightfall Fits into Compliance Frameworks
    • ISO 27001 Compliance + DLP
    • SOC 2 Compliance + DLP
    • PCI Compliance + DLP
    • PHI Detector - More on Nightfall's HIPAA Compliance Detector
  • Getting Started
    • Installing Nightfall
  • Nightfall Detection Platform
    • Overview
    • Detectors
    • Choosing a Nightfall Detector
      • Compliance Use Cases
      • Data Protection Use Cases
    • Nightfall Detector Glossary
      • Secrets Detection
    • Creating Custom Detectors
      • Creating Dictionary Detector
      • Create File Type Detector
      • Create File Fingerprint Detector
      • Create Regular Expression Detector
      • Extend a Nightfall Detector
    • Create Detection Rules
    • Detection Platform Overview
    • Evaluating Detection
    • Creating Policies
      • Selecting Integration
      • Scope of the Policy
      • Detection Rules
      • Advanced Settings
      • Name and Risk Score
    • Historical Scan Detection Rules
    • Regex Library
    • Detection Platform FAQs
      • How can I reduce false positives in my findings?
      • What do different “Confidence Levels” mean?
      • What file types will Nightfall scan for sensitive data? What are the limitations?
      • How do I use Context Rules?
      • How do I use Exclusion Rules?
      • Does Nightfall have a regex library I can choose from?
      • Why does Nightfall sometimes miss to report SSN, credit card number, and so on?
      • Why does the Password Detector Report False Positive Zoom Password Findings?
  • Nightfall Detection & Policy Templates
    • Detection Rules
    • Nightfall Sample Data Sets
  • Dashboard and Events
    • Nightfall Dashboard
    • Sensitive Data Protection Events
      • Filtering Events
      • Event Filter Operators
      • Applying Actions on Events
      • Applying Bulk Actions on Events
      • Event Status
      • Deduplication and Automatic Resolution of Events
  • Setting up Alert Platforms
    • Nightfall Alert Platforms
    • Setting up Slack as an Alert Platform
    • Setting up Jira as an Alert Platform
    • Setting up MS Teams as an Alert Platform
  • Operationalizing Nightfall DLP
    • Playbook
    • Informing & Coaching Business Users
    • Alert Management Guiding Principles
    • Integrating with Security Tools
      • Integrating with SIEM
        • Integrating with Microsoft Sentinel
      • Creating Dashboards for Nightfall Alerts in Splunk
      • Creating Dashboards for Nightfall Alerts in Sumo Logic
      • Sending Alerts to Microsoft Teams
    • Frequently Asked Questions (FAQs) for End-Users
  • Nightfall Integrations
  • Nightfall for Slack
    • Nightfall for Slack: Quick Start
    • Getting Started With Nightfall for Slack
      • Requirements
        • Requirements for Nightfall DLP for Slack Enterprise
        • Requirements for Nightfall DLP for Slack Pro and Slack Business+
      • Installing Nightfall for Slack
        • Installing Nightfall DLP for Slack Enterprise
        • Installing Nightfall DLP for Slack Pro and Business+
    • Configure Alerts for Slack
    • Configuring Policies for Slack Pro and the Slack Business+ Editions
      • Slack Pro and Business+ App Selection
      • Configure Scope for Slack Pro and Slack Business+
      • Configure Detection Rules for Slack Pro and Slack Business+
      • Configure Automated Actions in Slack Pro and Slack Business+
      • Configure Advanced Settings in Slack Pro and Slack Business+
      • Risk Configuration in Slack DLP for Slack Pro and Slack Business+ Editions
      • Manage Events for Slack
    • Configuring Policies for the Slack Enterprise Edition
      • Slack App Selection
      • Configure Scope for Slack Enterprise
      • Select Detection Rules for Slack Enterprise
      • Configure Automated Actions in Slack Enterprise
      • Configure Advanced Settings for Slack Enterprise
      • Risk Configuration for Slack Enterprise
      • Manage Events for Slack Enterprise
    • FAQs
      • Can I redact sensitive message content in Slack?
      • Nightfall for Slack Pro vs Enterprise
        • Upgrading from Slack Pro to Enterprise
      • Can we customize the alert messages sent in Slack?
      • Can I Disable Detection in Private Channels or DMs?
      • What types of channels does Nightfall scan? Does Nightfall scan shared channels?
      • I am unable to view a sensitive message or file from the Nightfall alert channel.
      • Upon Slack installation, why am I seeing a 400 error mentioning a "Restricted Action"?
      • I send a sensitive message, edit it, and then admin applies the Redact action. What is the outcome?
      • How do I re-install Nightfall DLP for Slack Pro Edition?
      • How do I re-install Nightfall DLP for Slack Enterprise Edition?
  • Nightfall for GitHub
    • Getting Started
      • Requirements
      • Install Nightfall for GitHub
      • Configure Alerts for GitHub
    • Configure Policies for GitHub
      • GitHub App Selection
      • Configure Scope for GitHub
        • Use Regular Expressions to Exclude GitHub Directories
      • Configure Detection Rules for GitHub
      • Configure Advanced Settings for GitHub
      • Configure Risk Score for GitHub
    • Manage GitHub Events
    • Remediation on Nightfall for Github
  • NIGHTFALL FOR GOOGLE DRIVE
    • Getting Started
      • Requirements
      • Install Nightfall for Google Drive
      • Enable Google Drive Labels
      • Configure Alerts for Google Drive
    • Configure Policies for Google Drive
      • Google Drive App Selection
      • Configure Scope for Google Drive
      • Configure Detection Rules for Google Drive
      • Configure Advanced Settings for Google Drive
      • Risk Score for Google Drive
      • Manage Google Drive Events
  • Nightfall for Confluence
    • Getting Started
    • Install Nightfall for Confluence
      • Configure Alerts for Confluence
    • Configuring Policies for Confluence
      • Confluence App Selection
      • Configure Scope for Confluence
      • Configure Detection Rules for Confluence
      • Configure Advanced Settings for Confluence
      • Configure Risk Score for Confluence
      • Manage Confluence Events
    • FAQs
      • Page Restrictions
  • Nightfall for jira
    • Getting Started
    • Install Nightfall for Jira
      • Configuring Alerts for Jira
    • Configure Policies in Nightfall for Jira
      • Jira App Selection
      • Configure Scope in Nightfall for JIRA
      • Select Detection Rules in Nightfall for JIRA
      • Configuring Advanced Settings in Nightfall for JIRA
      • Configure Risk Score for Jira
      • Manage Jira Events
  • Nightfall for Microsoft 365
    • Getting Started
      • Microsoft 365 Requirements
      • Setting up Directory Sync
      • Setting up Microsoft Tenant
        • Update App Selection for a Registered Tenant
    • Nightfall for OneDrive
      • Configure Alerts for OneDrive
      • Nightfall Policies for OneDrive
        • OneDrive App Selection
        • Configure Scope for OneDrive
        • Configure Detection Rules for OneDrive
        • Configure Advanced Settings for OneDrive
        • Risk Score for OneDrive Policies
        • Manage OneDrive Events
    • Nightfall for Microsoft Teams
      • Configure Alerts for Microsoft Teams
      • Configure Policies for Microsoft Teams
        • Select Integration in Microsoft Teams
        • Configure Scope for Microsoft teams
          • Scope for Personal Chats
          • Scope for MS Teams Channels
        • Configure Detection Rules in Microsoft Teams DLP
        • Configure Advanced Settings in Microsoft Teams
        • Risk Score in Microsoft Teams Policies
        • Manage Microsoft Teams Events
  • Nightfall for Gmail
    • Overview
    • Install Nightfall DLP for Gmail
      • Configure Content Compliance Rules
        • Create Content Compliance Rule - Monitoring
        • Configure Content Compliance Rule - Quarantine
        • Configure Routing Rules - SMTP Relay Settings
    • Configure Alerts for Gmail
    • Nightfall Policies for Gmail
      • Gmail App Selection
      • Configure Scope for Gmail
      • Configure Detection Rules for Gmail
      • Configure Advanced Settings for Gmail
      • Configure Risk Score for Gmail
      • Manage Gmail Events
    • Remediation on Nightfall for Gmail
  • Nightfall For Salesforce
    • Overview
    • Getting Started
      • Install Nightfall DLP for Salesforce
      • Upgrade Nightfall DLP for Salesforce
      • Configure Alerts for Salesforce
    • Nightfall Policies for Salesforce
      • Salesforce App Selection
      • Configure Scope for Salesforce
      • Configure Detection Rules for Salesforce
      • Configure Advanced Settings for Salesforce
      • Risk Score for Salesforce
      • Manage Salesforce Events
    • FAQs
  • Nightfall for Zendesk
    • Getting Started
      • Requirements
      • Install Nightfall DLP for Zendesk
      • Configure Alerts for Zendesk
    • Configure Policies for Zendesk
      • Zendesk App Selection
      • Configure Scope for Zendesk
      • Configure Detection Rules for Zendesk DLP
      • Configure Advanced Settings in Zendesk
      • Risk Score for Zendesk
      • Manage Zendesk Events
  • Nightfall for Notion
    • Getting Started
      • Requirements
      • Steps
    • Install Nightfall for Notion
      • Verification of Notion Installation
    • Configure Alerts for Notion
    • Configure Policies for Notion
      • Notion App Selection
      • Configure Detection Rules for Notion
      • Configure Advanced Settings for Notion
      • Risk Score for Notion
      • Manage Notion Events
  • NIGHTFALL FOR Generative AI Applications
    • Overview
    • Install Nightfall for GenAI apps
      • Install Nightfall DLP on Individual Devices
      • Install Nightfall DLP Across Organization
    • Configure Alerts for GenAI apps
    • Creating GenAI Policies from Nightfall Console
      • AI Apps Selection
      • Configure Detection Rules for AI Apps
      • Configure Advanced Settings for AI Apps
      • Risk Score for AI Apps
    • Nightfall Browser Plugin Deployment Guide
    • GenAI Safe Usage and Data Protection Policy
  • Developer Section
    • Nightfall Firewall for AI
    • Nightfall Playground
  • Settings
    • Users and Roles
      • Authentication Options
    • Role Based Access Control (RBAC)
      • Security Analyst Role
      • Policy Manager Role
      • Security Events Manager Role
      • Security Operations Manager Role
      • System Administrator Role
    • Directory Sync
      • Add Microsoft Entra ID to Nightfall
      • Google Workspace Directory Service
      • Add Okta to Nightfall
    • Custom Branding
    • Customer Referral Program
  • Frequently Asked Questions (FAQs)
    • How long does it take to deploy Nightfall?
    • How do I deploy Nightfall?
    • What are some unique points about Nightfall that I should know?
    • Which languages does Nightfall support?
    • How does Nightfall yield time savings for my team?
    • Nightfall vs Legacy DLP: What's the difference?
    • How does Nightfall make my organization more secure?
    • Nightfall vs CASB: What's the difference?
    • Nightfall vs E-Discovery: What's the difference?
    • How does Nightfall classify data?
    • What types of data does Nightfall classify?
    • Does Nightfall scan unstructured data?
    • Does Nightfall require data to be already tagged?
    • How do I learn more about and test out Nightfall?
    • Using Service Accounts with Nightfall
    • Which permissions are required for each integration?
    • Where can I find active user counts for each SaaS application protected by Nightfall?
    • In the Atlassian Marketplace, why does it show that the Nightfall app is not approved in security?
    • How can I estimate the data volume that Nightfall needs to scan?
    • How can I check the Platform Status of Nightfall
  • Login to Nightfall
  • Contact Nightfall
Powered by GitBook
On this page
  • Google Drive
  • Deduplication
  • Auto Resolve
  • Confluence
  • Deduplication
  • Auto Resolve
  • Jira
  • Deduplication
  • Auto Resolve
  • Notion
  • Deduplication
  • Auto Resolve
  • OneDrive
  • Deduplication
  • Auto Resolve
  • MS Teams
  • Deduplication
  • Auto Resolve

Was this helpful?

Export as PDF
  1. Dashboard and Events
  2. Sensitive Data Protection Events

Deduplication and Automatic Resolution of Events

This document explains the Deduplication and Auto resolve features for Nightfall Events.

PreviousEvent StatusNextNightfall Alert Platforms

Last updated 1 month ago

Was this helpful?

Deduplication reduces the number of distinct Events created for a finding that is already accounted for by an active Event. Deduplication prevents the creation of redundant Events which are related to an already existing Event.

When sensitive data is deleted from its location, Nightfall automatically changes the status of the related Event to Resolved. However, this process is not implemented in every scenario.

The following tables explains the various scenarios and how Deduplication and Auto resolve work in those scenarios, for each integration.

Google Drive

Deduplication

Auto Resolve

User Action in Google Drive

The user deletes sensitive data from a file.

The user removes credit card number 4242-4242-4242-4242 from the document called Data.

The event is automatically resolved.

The user moves a document containing sensitive data to Google Drive trash without removing the sensitive data present in it.

The user trashes the document called Data without erasing the credit card number from it.

The Event is not resolved automatically.

User deletes a file permanently (file not not present in trash), with or without removing the sensitive data present in it.

The user permanently deletes the document called Data.

The Event is resolved automatically. The Event log displays the message "The Violation resource was deleted".

Confluence

Deduplication

Confluence Entity
User Action in Confluence
Example
Automated actions due to Deduplication

Page

The user adds sensitive data to a Confluence page.

The user adds credit card number 4242-4242-4242-4242 to a Confluence page called Card.

A new event is created.

Page

The user duplicates sensitive data that already exists on a Confluence page.

The user adds credit card number 4242-4242-4242-4242 to the same page called Card.

The existing Event is updated with a new finding.

Page

The user adds new sensitive data to a page that already holds some sensitive data

The user adds credit card number 2424-2424-2424-2424 to the Confluence page Card.

A new event is created.

Comment

The user adds sensitive data in a comment.

The user adds credit card number 1243-1243-1243-1243 to the comment of a Confluence page called Card.

A new event is created.

Comment

The user duplicates sensitive data that already exists in a comment.

The user adds the credit card number 1243-1243-1243-1243 again to the same comment in the Confluence page called Card.

The existing Event is updated with a new finding.

Comment

The user adds new sensitive data to a comment that already has some sensitive data

The user adds credit card number 2143-2143-2143-2143 to the same comment on the Confluence page called Card.

A new event is created.

Comment

The user adds sensitive data that already exists in a comment, to a new comment.

The user adds a new comment to the Confluence page called Card. This new comment contains credit card number 8686-6868-8686-6868

A new event is created.

Attachments

The user adds an attachment with sensitive data.

The user attaches a document called file which contains sensitive data.

A new event is created.

Attachments

The user duplicates and reattaches sensitive data that already exists in an attachment.

The user attaches a document called file again.

The existing Event is updated with a new finding.

Attachments

The user adds a new attachment that contains sensitive data, which has already been reported.

The user attaches a document called file1. file1 has the same content as file.

A new event is created since Nightfall treats each attachment to be unique, irrespective of the data it contains.

Auto Resolve

User Action in Confluence
Example
Automated actions due to Auto Resolve

The user deletes a Confluence page containing sensitive data

The user deletes the Confluence page called Card. This page contains credit card number 4242-4242-4242-4242.

The related event is resolved automatically.

The user deletes a comment containing sensitive data.

The user deletes the comment from the Confluence page called Card. The comment contained the credit card number 1243-1243-1243-1243.

The related event is resolved automatically.

The user deletes an attachment containing sensitive data.

The user deletes the attachment called file which contains sensitive data.

The related event is not resolved automatically.

The user deletes a Confluence page that contains sensitive data in the page, attachment, and comment.

The user deletes the Confluence page called Card. This page contained credit card number 4242-4242-4242-4242, a comment that contained credit card number 1243-1243-1243-1243, and an attachment called file which contained sensitive data.

The related event is resolved only for the Confluence page. Events for comment and attachment must be resolved manually.

Jira

Deduplication

Jira Entity
User Action in Jira
Example
Automated actions due to Deduplication

Ticket

The user adds sensitive data to a Jira ticket.

The user adds API key abcd1234 to the ticket JIRA-1.

A new event is created.

Ticket

The user duplicates sensitive data that already exists in a Jira ticket.

The user adds the API key abcd1234 to the JIRA-1 ticket again.

The existing Event is updated with a new finding.

Ticket

The user adds new sensitive data to a ticket that already holds some sensitive data

The user adds the API key dcba1234 to the ticket JIRA-1 which already contains an API key abcd1234.

A new event is created.

Comment

The user adds sensitive data in a comment.

The user adds the credit card number 5678-8765-5678-8765 in a comment of the JIRA-1 ticket.

A new event is created.

Comment

The user duplicates sensitive data that already exists in a comment.

The user again adds the credit card number 5678-8765-5678-8765 in the same comment of the JIRA-1 ticket.

The existing Event is updated with a new finding.

Comment

The user adds new sensitive data to a comment that already has some sensitive data

The user adds the credit card number 8765-5678-8765-5678 to the comment of the JIRA-1 ticket. This comment already contains another credit card number 5678-8765-5678-8765

A new event is created.

Comment

The user adds sensitive data that already exists in a comment, to a new comment.

The user adds the credit card number 5678-8765-5678-8765 to another comment of the JIRA-1 ticket.

A new event is created.

Attachments

The user adds an attachment with sensitive data.

The user attaches a document called file which contains sensitive data to the JIRA-1 ticket.

A new event is created.

Attachments

The user adds a new attachment that contains sensitive data, which has already been reported.

The user adds an attachment that contains credit card number 5678-8765-5678-8765. This sensitive data has already been reported by Nightfall.

A new event is created since Nightfall treats each attachment to be unique, irrespective of the data it contains.

Auto Resolve

User Action in Jira
Example
Automated actions due to Auto Resolve

The user deletes a Jira ticket containing sensitive data.

The user deletes the JIRA ticket JIRA-1. This ticket contained sensitive data.

The related event is resolved automatically.

The user deletes a comment containing sensitive data.

The user deletes the comment for JIRA-1 ticket. This comment contained the credit card number 5678-8765-5678-8765.

The related event is resolved automatically.

The user deletes an attachment containing sensitive data.

The user deletes the document called file which contained sensitive data.

The related event is resolved automatically.

The user deletes a Jira ticket that contains sensitive data in the ticket, attachment, and comment.

The user deletes the JIRA-1 ticket. This ticket contained sensitive data in the ticket description, comment and attachment.

The related event is resolved only for the Jira ticket and the comment. Events for attachment must be resolved manually.

Notion

Deduplication

Notion Entity
User Action in Notion
Example
Automated actions due to Deduplication

Page

The user adds sensitive data to a Notion page.

The user adds credit card number 4242-4242-4242-4242 to a Notion page called Card.

A new event is created.

Page

The user duplicates sensitive data that already exists on a Notion page.

The user adds credit card number 4242-4242-4242-4242 to the same page called Card.

The existing Event is updated with a new finding.

Page

Adds new sensitive data to a page that already holds some sensitive data

The user adds credit card number 2424-2424-2424-2424 to the Confluence page Card.

A new event is created.

Comment

Adds sensitive data in a comment.

The user adds credit card number 1243-1243-1243-1243 to the comment of a Notion page called Card.

A new event is created.

Comment

Duplicates sensitive data that already exists in a comment.

The user adds the credit card number 1243-1243-1243-1243 again to the same comment in the Notion page called Card.

The existing Event is updated with a new finding.

Comment

Adds new sensitive data to a comment that already has some sensitive data

The user adds credit card number 2143-2143-2143-2143 to the same comment on the Notion page called Card.

A new event is created.

Comment

Adds sensitive data that already exists in a comment, to a new comment.

The user adds a new comment to the Notion page called Card. This new comment contains credit card number 8686-6868-8686-6868

A new event is created.

Attachments

Adds an attachment with sensitive data.

The user attaches a document called file which contains sensitive data.

A new event is created.

Attachments

Adds a new attachment that contains sensitive data, which has already been reported.

The user attaches a document called file1. This file contains the same sensitive data that has already been reported in the file attachment.

A new event is created since Nightfall treats each attachment to be unique, irrespective of the data it contains.

Auto Resolve

User Action in Notion
Example
Automated actions due to Auto Resolve

Deletes a page containing sensitive data

The user deletes the Notion page called Card.

The related event is not resolved automatically.

Deletes or resolves a comment containing sensitive data.

The user deletes the comment containing credit card number 1243-1243-1243-1243 from the Notion page called Card.

The related event is not resolved automatically.

Deletes an attachment containing sensitive data.

The user deletes the document called file which contains sensitive data.

The related event is resolved automatically.

Deletes a Notion page that contains sensitive data in the page, attachment, and comment.

The user deletes the Notion page called Card. This page contained sensitive data in its content, attachment, and comment.

None of the events are auto resolved. You must manually resolve the events for page, comments, and attachments.

OneDrive

Deduplication

User Action in OneDrive
Example
Automated actions due to Deduplication

The user adds sensitive data to an existing document

The user adds credit card number 4242-4242-4242-4242 to a document Data.

A new event is created for the sensitive credit card data added.

The user duplicates sensitive data that already exists in a document.

The user adds the credit card number 4242-4242-4242-4242 in the same document Data. The document called Data now has two instances of the same credit card number 4242-4242-4242-4242

The existing Event is updated with a new finding.

The user adds new sensitive data to a document which already holds some sensitive data

The user adds credit card number 2424-2424-2424-2424 to the document Data

A new Event is created for the newly added sensitive data.

The user adds an existing sensitive data to a new document

The user adds credit card number 4242-4242-4242-4242 in another document New Data.

New Event Created since sensitive data is added to another file.

The user adds new sensitive data to a new document

The user adds credit card number 1212-1212-1212-1212 to a document New Data

New Event Created for the sensitive credit card data added.

Auto Resolve

User Action in OneDrive
Example
Automated actions due to Auto Resolve

The user deletes sensitive data from a file

The user removes credit card number 4242-4242-4242-4242 from the document Data.

The Event is automatically resolved.

The user deletes the document containing sensitive data without removing the sensitive data present in it.

The user deletes the file Data.

The Event is not resolved automatically.

MS Teams

Deduplication

User Action in Teams
Example
Automated actions due to Deduplication

The user sends a message with sensitive data.

Tom sends a message with credit card number 1234-4321-1234-4321 to Steve.

A new event is created.

The user forwards a message containing sensitive data to another chat or group.

Tom forwards the message containing credit card number 1234-4321-1234-4321 to Rick.

A new event is created.

The user edits a message and duplicates an existing sensitive data.

Tom edits the message sent to Steve with credit card number 1234-4321-1234-4321. He duplicates the existing credit card number.

No change to the event.

The user sends a document with sensitive data

Tom sends a message with an attachment to Steve. This attachment contains credit card number 4321-12344321-1234

A new event is created.

The user sends a document with multiple instances of sensitive data.

Tom sends a message with an attachment to Rick. This attachment contains 5 credit card numbers.

A single event is created with multiple findings. The number of findings is equal to the instances of sensitive data.

The user edits a message that has no sensitive data and adds sensitive data to it.

Tom edits a message sent to Steve, previously. This message did not have any sensitive data, but after the edit Tom added credit card number 5678-8765-5678-8765 to the message.

No new event created.

The user edits a message with sensitive data and adds new sensitive data to it.

Tom edits the message sent to Steve with credit card number 1234-4321-1234-4321. He now adds another credit card number 8989-9898-8989-9898 to the message.

No new event created.

Auto Resolve

User Action in MS Teams
Example
Automated actions due to Auto Resolve

The user edits and removes the sensitive data or deletes the entire message containing sensitive data

Tom deletes the message sent to Steve that contained the credit card number 1234-4321-1234-4321

The event is automatically resolved.

The user deletes a document with sensitive data.

Tom deletes the attachment sent in a message to Steve. This attachment contained credit card number 4321-12344321-1234

The event is not resolved automatically.

To learn about how GitHub handles Deduplication and Auto Resolve, click .

here
User Action in Google Drive
Example
Automated actions due to Deduplication

The user adds confidential information to an existing document

The user adds credit card number 4242-4242-4242-4242 to a document called Data.

A new event is created for the sensitive credit card data added.

The user duplicates sensitive data that already exists in a document.

The user adds the credit card number 4242-4242-4242-4242 in the same document Data. The document called Data now has two instances of the same credit card number 4242-4242-4242-4242

The existing Event is updated with a new finding.

The user adds new sensitive data to a document which already holds some sensitive data

The user adds credit card number 2424-2424-2424-2424 to the document Data

A new Event is created for the newly added sensitive data.

The user adds an existing sensitive data to a new document

The user adds credit card number 4242-4242-4242-4242 in another document New Data.

A new Event is created since sensitive data is added to another file.

The user adds new sensitive data to a new document

The user adds credit card number 1212-1212-1212-1212 to a document New Data

A new Event is created for the sensitive credit card data added.