# DLP Exception Request Template

ใช้เมื่อ maker ต้องการใช้ connector, custom connector, API, หรือ data source ที่ DLP policy ปกติไม่อนุญาต

## 1. Request Summary

- Request name:
- Requested by:
- Team:
- Date:
- Environment:
- App/flow/chatbot/report affected:
- Needed by:
- Status: Draft / Submitted / Approved / Rejected / Expired

## 2. Business Need

อธิบายให้ชัดว่าทำไมต้องขอ exception ไม่ใช่แค่ “ใช้งานสะดวกกว่า”

- What business process does this support?
- What happens if this exception is not approved?
- Is there an approved connector or internal alternative?
- How long is this exception needed?

## 3. Data Involved

- Data classification: Public / Internal / Confidential / Highly Confidential
- Sensitive fields:
- Personal data involved: Yes / No / Unknown
- Secrets or tokens involved: Yes / No / Unknown
- Data volume:
- Data direction: Read only / Write only / Read and write / Export

## 4. Connector or API Details

| Item | Detail |
| --- | --- |
| Connector/API name |  |
| Connector group requested | Business / Non-business / Blocked / Custom |
| Endpoint or domain |  |
| Authentication method |  |
| Owner |  |
| Vendor or external party |  |
| Documentation link |  |

## 5. Risk Review

- [ ] Data owner reviewed the request
- [ ] Platform admin reviewed the connector/API
- [ ] Security owner reviewed sensitive fields and sharing risk
- [ ] No secrets are stored in formulas, comments, screenshots, or exported files
- [ ] Audit or run history can show who used the connector and when
- [ ] Failure path tells the owner what to do next

## 6. Guardrails Required

- [ ] Limit to a specific environment
- [ ] Limit to specific app/flow/chatbot
- [ ] Limit to specific users or security group
- [ ] Use service account or approved connection owner
- [ ] Add monitoring or run review cadence
- [ ] Add expiry date for this exception
- [ ] Add rollback plan if the connector causes incident or data exposure

## 7. Approval

| Role | Name | Decision | Date | Notes |
| --- | --- | --- | --- | --- |
| Data owner |  | Approved / Rejected |  |  |
| Platform admin |  | Approved / Rejected |  |  |
| Security reviewer |  | Approved / Rejected |  |  |
| Business owner |  | Approved / Rejected |  |  |

## 8. Expiry and Review

- Exception expiry date:
- Review cadence:
- Next review owner:
- Removal plan:
- Related incident/ticket/link: