This new protection inspects outbound responses to determine if they expose sensitive information, such as credit card numbers, Social Security numbers, or custom patterns. The protection scans the HTTP Body of each reply message for patterns and values matching those specified in the policy.