In some examples, the data loss prevention filters may monitor and scan the data input to the application on a dynamic and real-time basis continuously as the data is input to the application. In other examples, the data loss prevention filters may perform one or more of the collecting and the scanning at predefined intervals, according to a predefined schedule, and/or in response to detecting an attempt by the application to output a data object (e.g., a non-text multimedia data object that may potentially leak sensitive textual data, as outlined above). For example, in some embodiments, the data loss prevention filters may only scan the data upon detecting that the application is attempting to output the data object, thereby preventing the needless scanning of the data in cases where the application is executed and terminated without ever attempting to output such a data object. Notably, the data loss prevention filters may be integrated with monitoring module 104 or, instead, may constitute separate modules that simply communicate with monitoring module 104.

At step 304, one or more of the systems described herein may scan, through a data loss prevention scanner, the data input to the application to detect whether the data includes sensitive data that is protected by a data loss prevention policy. For example, scanning module 106 may, as part of server 206 in FIG. 2, scan, through the data loss prevention scanner, the data input to the application to detect whether the data includes sensitive data that is protected by a data loss prevention policy. As used herein, the term “data loss prevention scanner” generally refers to any hardware or software module that scans data to identify sensitive data that is protected by a data loss prevention policy, as discussed further below.