We only monitor data going outside our network, we do not monitor internal traffic at all. Our environment is not as strict as a hospital might be, though. We us other standard controls to restrict access to the various systems.
For instance, only Finance employees can access the Finance department network shares. They can send any document, spreadsheet, or presentation from there, via email, to any other employee, or copy it to another network location, and we don't monitor them via DLP. There is no "data Loss" to prevent. But if they, or the interal recipient, attempt to forward that document to a home email address, competitor, or anyone not in our domain, that's when we would care about it. That would be actual data loss, as far as we are concerned.