# Scope

The Scope section determines which areas of Nightfall needs to be monitored by Nightfall for Exfiltration. You can choose one or all of the following data types to be monitored. 

* Attachments & Files
* Reports
* Records & Objects

After you make the required selection, you can also add filters to monitor specific Salesforce users or Salesforce profiles.

{% hint style="info" %}
If you have connected multiple Salesforce org, the scope page allows you to select one and only one Salesforce org for the policy.
{% endhint %}

{% hint style="danger" %}
Nightfall can detect download actions done only from the Salesforce lightning version. Any download action done on the Salesforce Classic version cannot be detected by Nightfall. 
{% endhint %}

## Data Types

In the Data Types section, you must select the Salesforce data types to be monitored. By default, all the three data types are selected. You can choose to either retain all the three data types or clear any of the data types. 

{% hint style="info" %}
It is mandatory to select at least one data type for monitoring.
{% endhint %}

<figure><img src="/files/9rjWRXpIbKgcz8yvpea7" alt=""><figcaption></figcaption></figure>

## Filters

The Filters section allows you to add additional filters, on top of the selected data types, to narrow down the monitoring scope. Nightfall provides the following two types of filters. &#x20;

### Internal Users

You can choose specific Salesforce users whose activities need to be monitored or excluded from being monitored. Nightfall populates the list of all your users from Salesforce. You need to select either the users whose activities need to be monitored or the users whose activities need to be excluded from monitoring.&#x20;

To add Users filter, click **Add Filter** and select **Internal Users**.&#x20;

<figure><img src="/files/J2Z8lqm3hPNqWGnQQsbS" alt=""><figcaption></figcaption></figure>

To monitor specific users, select the **Monitor specific** option. To exclude specific users from being monitored, select the **Monitor all, except** option.&#x20;

<figure><img src="/files/Ub1KY75v61z9jg95Joxd" alt="" width="456"><figcaption></figcaption></figure>

Nightfall populates the list of Salesforce users in the **Search users** field. You can select the all the required users.&#x20;

<figure><img src="/files/ccY9rfT49mAOntrgHgwY" alt=""><figcaption></figcaption></figure>

### Salesforce Profiles

You can choose specific Salesforce profiles whose activities need to be monitored or excluded from being monitored. Nightfall populates the list of all your Salesforce profiles. You need to select either the profiles whose activities need to be monitored or the profiles whose activities need to be excluded from monitoring.&#x20;

<figure><img src="/files/jUy1qevi3JtREK0Iy9qW" alt=""><figcaption></figcaption></figure>

To monitor specific Salesforce profiles, select the **Monitor specific** option. To exclude specific Salesforce profiles from being monitored, select the **Monitor all, except** option.&#x20;

<figure><img src="/files/OOTfiFGmxF7eW9Dl6oXK" alt=""><figcaption></figcaption></figure>

Nightfall populates the list of Salesforce profiles in the **Search profiles** field. You can select the all the required users.&#x20;

<figure><img src="/files/OxPIJv91tSSXrOUVwnnU" alt=""><figcaption></figcaption></figure>

## Example Scenario

Contoso Ltd. uses Salesforce to host their applications. They have three users **Steve**, **Rick**, and **Matt** in their Salesforce org. These users are not Contoso employees. They are employees of Acme corp. which is a prospective customer of Contoso Ltd. Steve, Rick, and Matt are evaluating Constoso's app so that they can check if it meets Acme corp's requirements. Contoso has created a Salesforce profile called **Prospective customers** and added these three users to this profile

Contoso Ltd. uses Nightfall Salesforce exfiltration and wishes to check if any files with sensitive data is downloaded by any of these three users. They create a Salesforce exfiltration policy to monitor all the data types. They can choose one of the following filter.

* They can use the [#internal-users](#internal-users "mention") filter and add these three users.&#x20;
* They can select the [#salesforce-profiles](#salesforce-profiles "mention") filter and add the **Prospective customers** profile to it. So, in future if any other prospective customers added, they are also automatically monitored.&#x20;

&#x20;


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://help.nightfall.ai/data-exfiltration-prevention/exfiltration_salesforce/policies/scope.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.