New Features by Month - Enterprise DLP - May 2026

Enhanced Archive File Inspection allows Enterprise Data Loss Prevention (E-DLP) to scan for a wider range of archive file formats and deeper nesting levels. This ensures Enterprise DLP can successfully inspect and prevent exfiltration of sensitive data in compressed files.

Enterprise DLP can now inspect the following new archive formats.

• Enterprise DLP can now inspect the following new archive file types.

  • .7z

  • .bzip and .bzip2

  • .cab

  • .gzip

  • .iso

  • .rar

  • .tar

  • .zip

• Enterprise DLP supports the following archive file parameters.

  • Up to 8 levels of nesting

  • Up to 1024 sub-files

  • A total extracted text size of 125 MB

• Enterprise DLP introduced a new predefined Archive Scan Threshold Exceeded data pattern to detect when any supported archive file forwarded to Enterprise DLP exceeds the supported archive file parameters (nesting levels, sub-files, or total extracted text size).

  Enterprise DLP inspects up to the 125 MB text size limit when the extracted text of an archive file exceeds 125 MB. For example, the extracted text size of a forwarded archive file is 150 MB. In this case, Enterprise DLP inspects the first 125 MB only.

Enterprise Data Loss Prevention (E-DLP) supports the inspection of data in transit that is not part of a formal file upload. This non-file traffic inspection helps prevent the exfiltration of sensitive data through collaboration applications, web forms, cloud applications, and social media. However, this non-file traffic inspection is designed for transactional web traffic (HTTP/HTTPS), where the client and server exchange data in discrete, request-response cycles. In contrast, a WebSocket connection provides a persistent, bidirectional data stream over a single connection, allowing for continuous communication without the overhead of individual request-response cycles. While a WebSocket connection can provide better performance for real-time applications, it introduces unique security challenges for preventing data loss. These challenges exist because the persistent nature of the connection allows data to flow continuously rather than in distinct bursts, and can bypass traditional traffic-inspection methods.

To address these challenges, Enterprise DLP has expanded its non-file support to include inspection of WebSocket traffic. This capability allows the detection engine to examine WebSocket persistent streams in real time to identify sensitive patterns previously hidden within the open connection. Enterprise DLP supports WebSocket inspection for the following widely adopted applications that rely heavily on streaming data:

• Microsoft Copilot
• Perplexity

You can enable WebSocket inspection by editing the Enterprise DLP data filtering settings.

Enterprise Data Loss Prevention (E-DLP) now supports the following new apps :

• May 25, 2026

  • New App Support—13 apps

  • New GenAI App Support—15 apps

• May 18, 2026

  • New App Support—23 apps

  • New GenAI App Support—10 apps

• May 14, 2026

  • New App Support—3 apps

  • Download Support—2 apps

• May 11, 2026

  • New App Support—30 apps

• May 4, 2026

  • New App Support—42 apps

• May 1, 2026

  • New App Support—68 apps

  • File Upload Support for Existing Apps—3 apps

  • File Download Support for Existing Apps—1 app

  • Large File Support for Existing Apps—1 app

Enterprise Data Loss Prevention (E-DLP) now supports the following for predefined data patterns :

ML-Augmentation for Existing Predefined Data Patterns — May 12, 2026

• Address - Australia

• Address - Canada

• Address - UK

• Bank - American Bankers Association Routing Number - ABA

• Companies - Japan

• Full bank account number - United States

• Gender

• Healthcare Provider - AK

• Healthcare Provider - AL

• Healthcare Provider - CO

• Healthcare Provider - DC

• Healthcare Provider - MT

• Healthcare Provider - NE

• Healthcare Provider - NY

• Healthcare Provider - VA

• Healthcare Provider - VT

• Healthcare Provider - WV

• Measurements - Metric

• Medical - Terms

• National Id - Finland - Personal Identity Code - HETU

• SWIFT and BIC Code

Enterprise Data Loss Prevention (E-DLP) introduced expanded Optical Character Recognition (OCR) image support:

• Expanded Maximum Image Size — Enterprise DLP now supports OCR detection of images up to 20 MB in size.
• Reduced File Inspection Limitations — Enterprise DLP can now inspects the first 15 images per inspected file.