Skip to main content

Data Loss Prevention APIs

Enterprise Data Loss Prevention (E-DLP) is a set of tools and processes that allow you to protect sensitive information against unauthorized access, misuse, extraction, or sharing. Enterprise DLP is a cloud-based service that uses supervised machine learning algorithms to sort sensitive documents into Financial, Legal, Healthcare, and other categories for document classification to guard against exposures, data loss, and data exfiltration. These patterns can identify the sensitive information in traffic flowing through your network and protect them from exposure.

Using the API

If you have not already enabled DLP, setup prerequisites for Enterprise DLP.

The Enterprise DLP API enables you to programtically review DLP incidents captured by the patterns you define, view those incidents in a report, assign members of your team to review incidents, and update the incident notes.

You can start by retrieving all the incidents in your tenant to get an overall view of incidents or retrieve a specific report.


These APIs use the common SASE authentication for service access and authorization.

Once you have a TSG (Tenant Service Group), you can create a service account for it. When you create a service account, you get a Client ID and Client Secret, which you need in order to get an access token. You must also use your TSG's ID when you create an access token.