SailPoint Data Access Security extends identity governance capabilities to sensitive data across enterprise environments. The product discovers and classifies sensitive data including PII, financial records, and intellectual property across cloud, on-premises, and SaaS environments. It applies automated classification, tagging, and sensitivity labels to identify critical information. The solution identifies over-privileged access, externally shared sensitive content, and defunct accounts with sensitive permissions. It enforces least-privilege policies based on roles, usage patterns, and customizable policies. The product monitors data access activity and generates alerts on suspicious behavior such as unauthorized downloads, off-hours access, and unusual access patterns. Data Access Security integrates data-centric risk insights into access certifications, showing who accessed specific data, frequency of access, and context. It highlights regulated or high-risk entitlements and enables fine-grained access reviews to data assets. The product supports compliance efforts by streamlining certifications with enriched data context and metadata. The solution works with third-party data classification tools by importing existing classification tags and policies. It provides visibility into data access for all identity types including employees, contractors, bots, RPA accounts, and AI agents. The product operates as an add-on to SailPoint Identity Security Cloud platform.