DLP Approval Mechanism

What is a one sentence summary of your feature request?

We request an approval workflow mechanism that allows blocked data transfer attempts to be sent for managerial approval.

Please describe your idea in detail. What is your problem, why do you feel this idea is the best solution, etc.

Some of our customers require a formal approval mechanism for blocked data transfer events. For example, when a user attempts to send sensitive information such as credit card data and the action is blocked by policy, the user should have the option to submit this specific transfer request for managerial approval.

The expectation is that either through the agent interface or directly from the block notification popup, the user can click a “Request Approval” button. This request would then be sent to the relevant department manager (or predefined approver group), who can review the specific event details and either approve or reject the transfer.

If approved, only that specific transaction should be allowed to proceed — not a general or time-based permission.

We believe this is the best solution because:
Many organizations operate with exception-based workflows.
It maintains security control while allowing business continuity.
It provides auditability and traceability of exceptional approvals.
It prevents the need to weaken policies globally.

Without such a mechanism, customers are forced to choose between strict blocking and overly permissive temporary exceptions, which creates operational challenges.

How do you currently solve the challenges you have by not having this feature?

Currently, there is no direct way to manage per-transaction approvals.

As a workaround, temporary permissions may be granted using mechanisms such as OTP-based CAP authorization. However, this approach creates a broader permission window, meaning that all transfers during the approved time period become allowed. Customers do not prefer this model because it increases risk and removes granular control.

In practice, many customers cannot properly address this requirement today, which leads either to operational friction or security compromises.

Dear Faruk,

Thank you for sharing your feature request!
Please allow us some time to look into the possibilities for achieving this scenario and get back to you with a response.

Kind Regards,
Simona

Hello Faruk,

Thank you again for taking the time to share your valuable feedback on Endpoint Protector!

We’ve carefully reviewed your feature request. At this time, our product roadmap is fully committed, which means we’re unable to prioritize this enhancement in the short to mid-term. That said, we have logged your request as a long-term consideration, and it will be revisited as we plan future development cycles.

In the meantime, we are actively working on expanding our API capabilities, which may help address part of your management needs and provide additional flexibility.

We truly appreciate your understanding and encourage you to continue sharing your ideas—this plays an important role in shaping and improving our product.

All the best,
Simona