Hello,
The best thing to do is to design a process to handle DLP incidents.
Usually we create 3 levels of assessment.
The first one should exclude false positive
The second one should deal with data confidentialty and context of the leak.
and the third one should check the entire assessment and launch any special process with most severe case.
regards