A new DLP workflow that allows managers to approve their employees' DLP quarantine restore requests.
This capability allows organizations to route restore requests involving sensitive data to the employee’s manager, rather than sending every decision to security teams. The result is faster decision-making and clearer accountability, without weakening data protection controls.
With this workflow, administrators can define DLP policies so that when a user requests to restore a quarantined message, the request is automatically sent to their manager for review. This approach helps reduce the operational load on SOC teams by removing them from routine approval flows, while still ensuring sensitive content is carefully reviewed before being released.
From a visibility and governance perspective, the workflow gives managers direct insight into how their employees handle sensitive data. Managers can make informed approval decisions based on business context they already understand, while security teams benefit from improved scalability, faster response times, and consistent enforcement of DLP policies across the organization.
Managers approve or decline restore requests directly from their end-user portal - the same interface they already use to manage their own quarantined items and restore requests - ensuring a seamless and familiar experience.