When transferring information between different security domains, examine the information for the presence of organization-defined unsanctioned information.