Clearswift Automation

The crown jewel of Clearswift automation is . Rather than blocking a message entirely, the automation engine identifies the specific sensitive information within the document or email, removes (redacts) it, and allows the sanitized message to proceed to the recipient.

Clearswift’s CDR automation works by:

Clearswift’s ICAP server allows network devices (proxies, email relays) to send content for scanning. You can automate the source of that traffic. clearswift automation

| Scenario | Automation Approach | |----------|----------------------| | | Script adds their domain to the allowlist and assigns a low-risk policy. | | Threat feed integration | Every hour, pull a threat feed (e.g., abuse.ch) and block those sender domains via API. | | Quarantine digest + release | Auto‑release encrypted messages from trusted partners, or delete spam over 30 days old. | | Policy compliance sweep | Weekly script exports all DLP rules and diffs them against a Git repo (version control for policies). | The crown jewel of Clearswift automation is