You must create three compliance rules. The first rule ensures that all the emails are routed towards Nightfall for scanning. It is mandatory for you to create the scan rule.

The second compliance rule is required to quarantine emails. You must create this rule only if you wish to use the quarantine action in Gmail policies. You can choose to configure the quarantine rule or skip it.