Skip to content

Alerting/blocking for mismatched sensitive docs to SPO siteβš“οΈŽ

Business objective: Protect against the risk of documents labeled for higher sensitivity purposes being added to SharePoint sites labeled with a lower sensitivityβš“οΈŽ

This can be achieved by using an API to read sensitivity labels on documents and on sites, and then using it from Power Automate that will look at the document sensitivity and will either warn or move that document to another folder until the issue is resolved.

Note: The main limitation with this approach is that you can’t configure Power Automate to monitor all sites, so you would have to explicitly add an entry point for each site you want to monitor.

Figure 1: Power Automate flow

You can also choose to move the uploaded file to a different (secured) folder

Figure 2: moving the file to a different folder

Click here to see a short video that demos the process

Thank you!