Alerting/blocking for mismatched sensitive docs to SPO siteβοΈ
Business objective: Protect against the risk of documents labeled for higher sensitivity purposes being added to SharePoint sites labeled with a lower sensitivityβοΈ
This can be achieved by using an API to read sensitivity labels on documents and on sites, and then using it from Power Automate that will look at the document sensitivity and will either warn or move that document to another folder until the issue is resolved.
Note: The main limitation with this approach is that you canβt configure Power Automate to monitor all sites, so you would have to explicitly add an entry point for each site you want to monitor.
Figure 1: Power Automate flow
You can also choose to move the uploaded file to a different (secured) folder
Figure 2: moving the file to a different folder
Click here to see a short video that demos the process
Thank you!