Policy Categories
Containment.AI organizes policies into categories for easier management. This guide covers each category and its policies.
Personally Identifiable Information (PII)
Policies that detect personal information that could identify individuals.
Social Security Numbers
Detects: US Social Security Number patterns
- Format: XXX-XX-XXXX, XXXXXXXXX
- Validates checksum patterns
- Default: Block
Credit Card Numbers
Detects: Payment card numbers
- Visa, Mastercard, Amex, Discover
- 13-19 digit patterns
- Luhn algorithm validation
- Default: Block
Phone Numbers
Detects: Phone number patterns
- US formats: (xxx) xxx-xxxx, xxx-xxx-xxxx
- International: +1, +44, etc.
- 10-15 digit sequences
- Default: Warn
Email Addresses
Detects: Email patterns
- Standard email format
- Context awareness (not system emails)
- Default: Log
Physical Addresses
Detects: Street addresses
- Street number + name patterns
- City, state, zip combinations
- International address formats
- Default: Warn
Date of Birth
Detects: Birth date patterns
- Various date formats
- Combined with context clues
- Default: Warn
Credentials & Secrets
Policies that detect authentication credentials and sensitive tokens.
API Keys
Detects: Common API key formats
- AWS Access Keys
- Google API keys
- Azure subscription keys
- Generic long strings
- Default: Block
Passwords
Detects: Password-like content
- "Password:" followed by text
- Common password patterns
- Credential file snippets
- Default: Block
Private Keys
Detects: Cryptographic keys
- PEM format keys
- SSH private keys
- Certificate contents
- Default: Block
Connection Strings
Detects: Database connection info
- JDBC URLs
- MongoDB connections
- Redis URLs
- Default: Block
OAuth Tokens
Detects: Authentication tokens
- Bearer tokens
- JWT patterns
- Refresh tokens
- Default: Block
Healthcare (HIPAA)
Policies for healthcare organizations handling Protected Health Information.
Medical Record Numbers
Detects: MRN patterns
- Numeric identifiers
- Combined with medical context
- Default: Block
Diagnosis Codes
Detects: ICD-10, CPT codes
- Standard medical coding formats
- Procedure codes
- Default: Warn
Prescription Information
Detects: Medication details
- Drug names + dosages
- Pharmacy information
- Default: Warn
Patient Names
Detects: Names in medical context
- Combined with medical terms
- Chart references
- Default: Block
Financial Data
Policies for financial services and sensitive business data.
Bank Account Numbers
Detects: Account numbers
- Routing + account combinations
- IBAN formats
- Default: Block
Financial Statements
Detects: Financial data patterns
- Revenue figures
- Profit/loss statements
- Balance sheet data
- Default: Warn
Trading Information
Detects: Non-public trading data
- Stock symbols + insider context
- Trading strategies
- Default: Block
Code & Intellectual Property
Policies protecting proprietary code and business information.
Source Code
Detects: Code snippets
- Function definitions
- Class structures
- Comments with sensitive info
- Default: Warn
Internal Documentation
Detects: Confidential docs
- "Confidential" markers
- "Internal only" labels
- NDA-protected content
- Default: Warn
Project Codenames
Detects: Internal project names
- Configurable project list
- Context-aware detection
- Default: Log
Custom Categories
Professional and Enterprise plans can create custom categories:
Creating Custom Categories
- Go to Policies > Categories
- Click Add Category
- Enter category name and description
- Start adding policies
Custom Policy Templates
Build policies from templates:
- Keyword list - Match specific words
- Regex pattern - Custom regex rules
- Data type - Structured data formats
- Combined - Multiple conditions
Category Settings
Each category supports:
Bulk Actions
- Enable/disable all policies
- Set default behavior
- Export category settings
Category Defaults
- Default trigger behavior
- Default sensitivity
- Default scope
Category Notifications
- Alert routing for category
- Escalation rules
- Integration triggers
Managing Categories
Reordering
Drag categories in the sidebar to reorder.
Filtering
Filter policies within categories by:
- Status (enabled/disabled)
- Trigger type
- Sensitivity level
Bulk Import
Import policies via:
- CSV upload
- JSON configuration
- API endpoint
Related Topics
- Policy Overview - How policies work
- Configuring Policies - Customize settings
- Exceptions - Handle edge cases