You have been made aware that financial data, specifically credit card numbers, may be inadvertently shared within the organization's emails. To minimize the risk and ensure the company's governance policies are upheld, which approach would you adopt using Gmail's DLP?