Add detection entries

maxvp · maxvp · commit 87619ba87548 · 2025-08-24T14:20:23.000-05:00
diff --git a/src/content/docs/cloudflare-one/policies/data-loss-prevention/detection-entries.mdx b/src/content/docs/cloudflare-one/policies/data-loss-prevention/detection-entries.mdx
@@ -7,7 +7,7 @@ sidebar:
 
 import { Details } from "~/components";
 
-Cloudflare DLP can scan your web traffic and SaaS applications for specific data defined in custom detection entries. Detection entries allow you to define custom data patterns for DLP to detect using [DLP profiles](/cloudflare-one/policies/data-loss-prevention/dlp-profiles/). Detection entries include custom [datasets](#datasets) with defined data and [document entries](#documents) with example fingerprints.
+Cloudflare DLP can scan your web traffic and SaaS applications for specific data defined in custom detection entries. Detection entries allow you to define custom data patterns for DLP to detect using [DLP profiles](/cloudflare-one/policies/data-loss-prevention/dlp-profiles/). Detection entries include custom [datasets](#datasets) with defined data, [document entries](#documents) with example fingerprints, and [AI prompt topics](#ai-prompt-topics).
 
 You can configure sensitive data to be hashed before reaching Cloudflare and redacted from matches in [payload logs](/cloudflare-one/policies/data-loss-prevention/dlp-policies/logging-options/#log-the-payload-of-matched-rules).
 
@@ -132,3 +132,20 @@ Uploaded document entries are read-only. To update a document entry, you must up
 5. Select **Save**.
 
 Your new document entry will replace the original document entry. If your file upload fails, DLP will still use the original document fingerprint to scan traffic until you delete the entry.
+
+## AI prompt topics
+
+DLP uses [Cloud App Control](/cloudflare-one/policies/gateway/http-policies/#cloud-app-control) to detect and categorize prompts and responses submitted to generative AI tools. Cloud App Control analyzes prompts for both content and user intent. Supported prompt topic detections include:
+
+| Detection entry                       | Description                                                                                      |
+| ------------------------------------- | ------------------------------------------------------------------------------------------------ |
+| Content: PII                          | Prompt contains personal information such as names, SSNs, or email addresses                     |
+| Content: Credentials and Secrets      | Prompt contains API keys, passwords, or other sensitive credentials                              |
+| Content: Source Code                  | Prompt contains actual source code, code snippets, or proprietary algorithms                     |
+| Content: Customer Data                | Prompt contains customer names, projects, business activities, or confidential customer contexts |
+| Content: Financial Information        | Prompt contains financial numbers or confidential business data                                  |
+| Intent: PII                           | Prompt requests specific personal information about individuals                                  |
+| Intent: Code Abuse and Malicious Code | Prompt requests malicious code for attacks, exploits, or harmful activities                      |
+| Intent: Jailbreak                     | Prompt attempts to circumvent AI security policies                                               |
+
+To use an AI prompt topic, add it as an existing entry to a [custom DLP profile](/cloudflare-one/policies/data-loss-prevention/dlp-profiles/#build-a-custom-profile).
