End users often struggle to identify exactly which website or app triggered an Enterprise Data Loss Prevention (E-DLP) incident when the End User Coaching notifications displays only the app name. This can lead to confusion and unnecessary help desk calls. Enterprise DLP End User Coaching notifications now include the URL domain information alongside app names to provide the critical context your end users need to understand and comply with your organization's data protection policies.

When you configure an End User Coaching notification template that includes the [app name] attribute, Autonomous DEM automatically appends the URL domain in parentheses after the app name. For example, if your template contains the message Your file [file name] [direction] [app name] [action] due to company policy on sensitive data the actual end user notification displays Your file Sample.doc uploaded to example-base (www.example.com) was blocked due to company policy on sensitive data. This additional context helps users understand the exact destination that triggered the DLP incident to reduce confusion and to help prevent repeated violation attempts to the same destination. This works with both specifically identified apps and generic apps like web browsing. If no URL domain is associated with the incident, the notification displays only the app name without parentheses.