Policies
Classifications Reference
Complete reference table of all predefined classification types with descriptions grouped by country.
The table below lists each classification type, with a description for each and grouped by country.
| CLASSIFICATION | DESCRIPTION | COUNTRY / PURPOSE | |
|---|---|---|---|
| 1 | U.S. Drivers License Number Policy | Detect U.S. drivers license numbers. | United States |
| 2 | U.S. Export Controlled Information Policy | Detects content subject to export control under the U.S. International Traffic in Arms Regulations (ITAR), the Arms Export Control Act, the Export Administration Act, export controlled materials under U.S. Department of Commerce (DoC) Export Administration Regulations (EAR) 15 CFR 730-774, the Export Administration Regulations (EAR), U.S. Executive Order 13556 “Controlled Unclassified Information” (CUI) 32 CFR Part 2002, or articles, services, and related technical data designated as defense articles or defense services pursuant to sections 38 and 47(7) of the Arms Export Control Act and constitute the U.S. Munitions List (USML). | |
| 3 | U.S. Passport Policy | Detects U.S. passports and passport cards with related personal information. | |
| 4 | U.S. Personal Data Policy | Detects personal data applicable to United States’s Federal and State laws, including The Federal Trade Commission Act (FTC Act), the Financial Services Modernization Act (Gramm-Leach-Bliley Act (GLB/GLBA)), the Health Insurance Portability and Accountability Act (HIPAA), the Fair Credit Reporting Act (FCRA), the Fair and Accurate Credit Transactions Act (FACTA), among many others. | |
| 5 | U.S. Sensitive Data Policy | Detects sensitive data for the United States as defined by the California Consumer Privacy Act of 2018 (CCPA). | |
| 6 | U.S. Social Security Number (SSN) and Taxpayer ID Policy | Detect U.S. taxpayer identification numbers. This is typically the U.S. Social Security Number (SSN). | |
| 7 | Bank Account Number Policy | Detect bank account numbers. | Finance — General |
| 8 | Credit Card Policy | Detect credit and debit cards. | |
| 9 | PCI-DSS Policy | Detects content subject to the Payment Card Industry Data Security Standard (PCI-DSS) industry standard. | |
| 10 | SWIFT Codes Policy | Detect Society for Worldwide Interbank Financial Telecommunication (SWIFT) codes, also known as Bank Identifer Codes (BIC), also known as Business Identifier Codes (BIC), also known as ISO 9362, and related content. | |
| 11 | U.S. Financial Forms / Documents | Detect U.S. financial forms and documents. | United States — Finance |
| 12 | U.S. Securities and Exchange Commission (SEC) Forms Policy | Detect U.S. Securities and Exchange Commission (SEC) Forms. | |
| 13 | U.S. Sarbanes-Oxley (SOX) Policy | Detect forms and terms relating to the U.S. Sarbanes-Oxley Act of 2002 (“SOX”, Public Law 107). | |
| 14 | United States Internal Revenue Service (IRS) 1075 Policy | Detect IRS tax forms and financial information for the U.S. Internal Revenue Service (IRS) 1075 and Internal Revenue Code (IRC) 6103. | |
| 15 | Gramm-Leach-Bliley Act (GLBA) Policy | Detect personal financial information for the Financial Services Modernization Act of 1999, also known as Gramm-Leach-Bliley Act (GLBA), also known as Public Law 106-102. | |
| 16 | Fair Credit Reporting Act (FCRA) Policy | Detect personal credit information for Fair Credit Reporting Act (FCRA). | |
| 17 | Coronavirus (COVID) Policy | Detects Corona Virus Disease names and related terms. This policy template can be extended with additional data elements to find content containing Coronavirus/COVID in specific contexts (for example, patient health, financial benefits, etc). | United States — Health |
| 18 | ICD 10 CM Diagnosis | Detect ICD 10 CM diagnosis indexes (textual names) and codes (alpha-numeric). | |
| 19 | Medical Record Number Policy | Detect medical record numbers (generically). | |
| 20 | U.S. Health Insurance Portability and Accountability Act (HIPAA) Policy | Detects electronic patient health information (ePHI) information for United States Health Insurance Portability and Accountability Act (HIPAA), also known as Public Law 104-191. | |
| 21 | Family Educational Rights and Privacy Act (FERPA) Policy | Detects educational content subject to the Family Educational Rights and Privacy Act (FERPA). | United States — Government |
| 22 | Federal Financial Institutions Examination Council (FFIEC) Policy | Detect personally identifiable and financial information for the Federal Financial Institutions Examination Council (FFIEC). | |
| 23 | Proposals / Bids Policy | Detects corporate proposal and bid documents. | |
| 24 | U.S. International Traffic in Arms Regulations (ITAR) Policy | Detects content subject to export control under the U.S. International Traffic in Arms Regulations (ITAR), the Arms Export Control Act, the Export Administration Act, the Export Administration Regulations (EAR), or articles, services, and related technical data designated as defense articles or defense services pursuant to sections 38 and 47(7) of the Arms Export Control Act and constitute the U.S. Munitions List (USML). | |
| 25 | U.S. Drug Enforcement Agency (DEA) Number Policy | Detect U.S. Drug Enforcement Agency (DEA) numbers and related content. | |
| 26 | U.S. Federal Information Security Management Act (FISMA) Policy | Detect personal and security information and for U.S. Federal Information Security Management Act (FISMA) of 2002, also known as E-Government Act of 2002, also known as Public Law 107-347. The type of information that should be protected depends on the relevant agency/sector. | |
| 27 | United States California Assembly Bill 1298 (AB-1298) Policy | Detects electronic patient personally identifiable information (PII) for California’s medical privacy law and medical identity theft to support California Assembly Bill 1298 (California/CA AB 1298). | United States — California |
| 28 | United States California Consumer Privacy Act (CCPA) Policy | Detects U.S.- and California- centric personally identifiable information in accordance with California AB-375, or California Consumer Privacy Act (CCPA). | |
| 29 | United States California Financial Information Privacy Act (SB1) Policy | Detect personal financial information for California Financial Information Privacy Act, also known as CA SB1. | |
| 30 | United States Massachusetts Regulation 201 CMR 17.00 (MA 201 CMR 17) Policy | Detects U.S.- and Massachusetts- centric personally identifiable information in accordance with Massachusetts Regulation 201 CMR 17.00. | United States — Massachusetts |
| 31 | United States New York State Department of Financial Services (NYDFS) Cybersecurity Regulation 23 NYCRR 500 Policy | Detects personal data applicable to the New York State Department of Financial Services (NYDFS) Cybersecurity Regulation, 23 NYCRR 500. | United States — New York |
| 32 | Authentication Policy | Detect authentication information such as credentials | Other |
| 33 | Company Confidential and Intellectual Property Policy | Detect documents which are confidential, secret, internal-only as well as intellectual property source code. | |
| 34 | Criminal History Policy | Detects identity history summary (Criminal History Record, or Rap sheet) for Criminal Justice Systems. | |
| 35 | Ethics and Code of Conduct Policy | Detect terms which may be unethical or against corporate code of conduct policy. | |
| 36 | IP Address Policy | Detect Internet Protocol (IP) addresses. | |
| 37 | Ransomware Policy | Detects ransom notes/demands/instructions from ransomware malware. | |
| 38 | Workplace Harassment Policy | Detect content which may violate federal, state, local, corporate, and workplace or sexual harassment policies and regulations. | |
| 39 | Argentina Personal Data Policy | Detects personal data as defined by Argentina’s Personal Data Protection Law No. 25,326 (PDPL), Argentina Bill No. MEN-2018-147-APN-PTE, and a general similarity to the European General Data Protection Regulation (GDPR). | Argentina |
| 40 | Argentina Sensitive Data Policy | Detects sensitive data for Argentina as defined by the European General Data Protection Regulation (GDPR). | |
| 41-46 | Australia (6 policies) | Drivers License, Passport, Personal Data, Sensitive Data, Individual Healthcare Identifier (IHI), Tax | Australia |
| 47-48 | Austria (2 policies) | Sensitive Data, Personal Data | Austria |
| 49-50 | Belgium (2 policies) | Personal Data, Sensitive Data | Belgium |
| 51-52 | Brazil (2 policies) | Personal Data (LGPD), Sensitive Data | Brazil |
| 53-54 | Bulgaria (2 policies) | Personal Data, Sensitive Data | Bulgaria |
| 55-60 | Canada (6 policies) | Drivers License, Healthcare Identifiers, Passport, Personal Data (PIPEDA), Sensitive Data, Social Insurance Number | Canada |
| 61-62 | China (2 policies) | Personal Data (NPC Cybersecurity Law), Sensitive Data | China |
| 63-64 | Croatia (2 policies) | Personal Data, Sensitive Data | Croatia |
| 65-66 | Cyprus (2 policies) | Personal Data, Sensitive Data | Cyprus |
| 67-68 | Czech Republic (2 policies) | Personal Data, Sensitive Data | Czech Republic |
| 69-70 | Denmark (2 policies) | Personal Data (APPD), Sensitive Data | Denmark |
| 71-72 | Estonia (2 policies) | Personal Data, Sensitive Data | Estonia |
| 73-74 | Finland (2 policies) | Personal Data, Sensitive Data | Finland |
| 75-77 | France (3 policies) | Personal Data (DPA), Sensitive Data, National ID | France |
| 78-79 | Germany (2 policies) | Personal Data (BDSG), Sensitive Data | Germany |
| 80-81 | Greece (2 policies) | Personal Data, Sensitive Data | Greece |
| 82-83 | Hungary (2 policies) | Personal Data, Sensitive Data | Hungary |
| 84-85 | Hong Kong (2 policies) | Personal Data (PDPO), Sensitive Data | Hong Kong |
| 86-87 | India (2 policies) | Personal Data (DPB 2019), Sensitive Data | India |
| 88-89 | Ireland (2 policies) | Personal Data, Sensitive Data | Ireland |
| 90-91 | Israel (2 policies) | Personal Data, Sensitive Data | Israel |
| 92-94 | Italy (3 policies) | Codice Fiscale, Personal Data, Sensitive Data | Italy |
| 95-96 | Japan (2 policies) | Personal Data (APPI), Sensitive Data | Japan |
| 97-98 | Latvia (2 policies) | Personal Data, Sensitive Data | Latvia |
| 99-100 | Lithuania (2 policies) | Personal Data, Sensitive Data | Lithuania |
| 101-102 | Luxembourg (2 policies) | Personal Data, Sensitive Data | Luxembourg |
| 103-104 | Malta (2 policies) | Personal Data, Sensitive Data | Malta |
| 105-106 | Mexico (2 policies) | Personal Data, Sensitive Data | Mexico |
| 107-108 | Netherlands (2 policies) | Personal Data, Sensitive Data | Netherlands |
| 109-110 | Norway (2 policies) | Personal Data (PDA), Sensitive Data | Norway |
| 111-112 | Iceland (2 policies) | Personal Data, Sensitive Data | Iceland |
| 113-114 | Poland (2 policies) | Personal Data (PDPA), Sensitive Data | Poland |
| 115-116 | Portugal (2 policies) | Personal Data, Sensitive Data | Portugal |
| 117-118 | Romania (2 policies) | Personal Data, Sensitive Data | Romania |
| 119-120 | Russia (2 policies) | Personal Data (No. 152-FZ), Sensitive Data | Russia |
| 121-122 | Singapore (2 policies) | Personal Data (PDPA), Sensitive Data | Singapore |
| 123-124 | Slovakia (2 policies) | Personal Data, Sensitive Data | Slovakia |
| 125-126 | Slovenia (2 policies) | Personal Data (ZVOP-1/ZVOP-2), Sensitive Data | Slovenia |
| 127-128 | South Africa (2 policies) | Personal Data (POPIA/POPI), Sensitive Data | South Africa |
| 129-130 | Spain (2 policies) | Personal Data, Sensitive Data | Spain |
| 131-132 | Sweden (2 policies) | Personal Data (PDA), Sensitive Data | Sweden |
| 133-135 | Switzerland (3 policies) | Personal Data (FADP/DPA), National ID, Sensitive Data | Switzerland |
| 136-137 | Thailand (2 policies) | Personal Data (PDPA), Sensitive Data | Thailand |
| 138-139 | Turkey (2 policies) | Personal Data (KVKK), Sensitive Data | Turkey |
| 140-141 | UAE (2 policies) | Personal Data, Sensitive Data | UAE |
| 142-148 | U.K. (7 policies) | Drivers License, National ID, NINO, Passport, Personal Data (DPA), UTR, Sensitive Data | UK |
| 149-150 | Ukraine (2 policies) | Personal Data (No. 2297 VI), Sensitive Data | Ukraine |
No images referenced.