Policy in SaaS Security API is simple and aims to create an awareness of content and user actions and minimize the risks associated with the use of sanctioned SaaS and IaaS applications. SaaS Security API policy enables you to monitor and enforce responsible use of assets (files or other data) and protect against malware, malware propagation, regulatory non-compliance, and data leaks that are caused by human errors, such as promiscuous or inadvertent sharing, and sharing content using links without establishing an expiration date. When SaaS Security API detects a policy violation, it generates an alert to notify you of an active incident related to malware, a security breach, or a compliance violation and, if configured, takes automatic action to remediate the incident.