figma guide

Designing content classification and sensitivity labels UI in Figma: tagging, inheritance, and handoff

Design content classification and sensitivity label UI in Figma with label taxonomy, auto-tag rules, inheritance, DLP triggers, and Dev Mode specs for enterprise data governance.

Published
Updated
Jul 16, 2026
Read time
8 min
Level
Intermediate

Quick answer

Content classification labels tag files and projects by sensitivity—configured under Organization → Security → Classification. Design a label taxonomy table (name, level, color, DLP actions); auto-tag rules based on keywords, team, or file type; inline label picker on file headers and share dialogs; inheritance rules from project → file with override warnings; bulk re-label for migrations; and audit events when labels change or downgrade. Start from the Figma guides hub and pair with DLP sharing restrictions, data retention, and Dev Mode handoff.


Who this is for

  • Product designers building enterprise Security settings, file metadata UI, and data governance admin consoles.
  • Design system teams aligning label chips with badges and color tokens.
  • Engineers implementing label inheritance, policy evaluation order, and downgrade approval flows.

Classification entry points

LocationAudienceActions
Org → Security → ClassificationSecurity adminCRUD label taxonomy and auto-tag rules
File / project headerAll membersView and apply label (if permitted)
Share dialogEnd userSee label-driven restrictions before share
Bulk admin toolsCompliance adminRe-label, audit mismatches

Verdict: one Classification hub for taxonomy and rules—do not scatter label definitions across DLP and retention settings without cross-links.


Label taxonomy table

ColumnSpecNotes
Label namePublic, Internal, Confidential, RestrictedRequired, unique
Sensitivity level1–4 numeric rankHigher = stricter
Color / iconSemantic tokenMust pass a11y contrast
Default DLP actionLink to DLP policyAuto-suggest on label create
Retention overrideOptional shorter/longer periodLink to retention rules
Files taggedCountLink to inventory
StatusActive / DeprecatedDeprecated = no new applies
ActionsEdit, Duplicate, DeprecateDelete blocked if files tagged
ClassificationTaxonomyTable
├── Toolbar: [ Add label ] [ Import MIP template ] [ Preview impact ]
├── Rows: Public · Internal · Confidential · Restricted
└── Footer: "4 active labels · 12,400 files classified"

Import template for common frameworks: ISO 27001 four-tier, Microsoft-style labels, or custom import CSV.


Add / edit label modal

FieldValidationHelper text
NameRequired, max 32 charsShown on file chip
DescriptionRequired”When to use this label” for members
Sensitivity level1–10, unique rankUsed for inheritance conflicts
VisualColor + optional iconPreview chip in modal
Downgrade policyAllow / Require approval / BlockPrevent accidental declassification
Linked DLP policiesMulti-selectAuto-attach on save
Retention modifierNone / extend / shortenOptional override
AddLabelModal
├── Name: [ Confidential ]
├── Description: [ Customer data, unreleased product plans ]
├── Level: [ 3 ] of 4
├── Chip preview: [ Confidential ]
├── Downgrade: (•) Require manager approval  ( ) Block
├── DLP: [x] Block external viewers  [x] Watermark exports
└── [ Cancel ] [ Save label ]

Show impact preview: how many existing files would match if auto-tag rules are added later.


Inline label picker on files

Every classified asset shows a persistent label chip in the file header:

FileHeader
├── Title: Q3 Product Roadmap
├── Label chip: [ Confidential ▾ ]  ← clickable if user has classify permission
├── Inherited badge: "From project Acme Core" (optional)
└── Banner if mismatch: "Auto-tag suggests Restricted — review"
StateUI
No labelGray chip: “Set classification”
InheritedChip + subtle “Inherited” sublabel
OverrideChip + “Override” badge, audit on save
LockedChip disabled; tooltip cites org policy
SuggestedDotted outline chip: “Suggested: Internal”

Apply label opens searchable dropdown sorted by sensitivity level—show description on hover for training.


Auto-tag rules

Rule typeTriggerExample
Keyword in titleFile or page name contains”roadmap”, “salary”, “contract”
Team / projectScope matchAll files in Legal team → Confidential
File type / pluginMetadataImported PDF → Internal minimum
Member roleCreator contextExternal guest files → Restricted ceiling
Age / inactivitySchedulerUnlabeled 30d → prompt or auto Internal
AutoTagRulesTable
├── Rule: Title contains "PII" → Restricted
├── Rule: Project "Public Marketing" → Public ceiling
├── Rule: Unlabeled file 14d → notify owner
└── [ Add rule ] [ Run scan now ]

Run scan now produces a classification gap report: unlabeled files, suggested labels, conflicts with manual labels.


Inheritance and override

ScopeDefault behaviorOverride UI
Project labelApplies to new filesFile can only increase sensitivity
Team defaultSuggested on createMember sees pre-selected label
Org minimumFloor for all filesCannot set below Internal
Parent pageDesign file pages inherit file labelPage-level override rare
LabelOverrideModal
├── Current: Internal (inherited from project)
├── New: [ Confidential ▾ ]
├── Warning: "Increases restrictions — external share will be blocked"
├── Reason: [ Required for audit ] textarea
└── [ Cancel ] [ Apply with approval ]

Downgrade (Confidential → Internal) always requires approval when org policy mandates—route to Security Admin queue like DLP exceptions.


Share and export integration

Labels drive inline enforcement before sharing:

LabelPublic linkExternal emailDownload
PublicAllowedAllowedAllowed
InternalOrg onlyDomain allowlistAllowed
ConfidentialBlockedApproval requiredWatermarked
RestrictedBlockedBlockedBlocked

Share dialog shows label chip next to permission dropdown—changing share target re-evaluates label policy live.


Bulk re-label and migration

Compliance admins need batch tools after taxonomy changes:

BulkRelabelWizard
├── Step 1: Filter (team, unlabeled, deprecated label)
├── Step 2: Preview (4,200 files → Confidential)
├── Step 3: Justification + effective date
└── Step 4: Job progress · email on complete

Log every bulk job to audit activity with actor, old label, new label, file count.


Role and permission interaction

Custom roles need classification capabilities:

CapabilityEffect
classify.applySet label up to role ceiling
classify.downgradeLower sensitivity (may still need approval)
classify.adminEdit taxonomy and auto-tag rules
classify.bulkRun bulk re-label jobs

Role editor groups these under Data governance—mirror label names in capability descriptions.


Retention and compliance alignment

Data retention and legal hold interact with labels:

LabelRetentionHold behavior
PublicStandard org defaultHold applies normally
ConfidentialExtended log retentionHold blocks purge
RestrictedShort user access, long auditExport requires compliance role

Classification settings sidebar note: “Label changes do not retroactively alter holds—review hold scope separately.”


Common mistakes

MistakeWhy it hurtsFix
Too many label tiersUsers pick wrong levelCap at 4–5 with clear descriptions
Labels hidden in file menuFiles stay unclassifiedPersistent header chip
No downgrade approvalAccidental data exposureRequire approval for lower sensitivity
Auto-tag without notifySilent reclassificationNotify owner on auto-apply
DLP and labels disconnectedPolicies driftLink policies on label create
Color-only distinctionColor-blind users failIcon + text on every chip
Inheritance unclearWrong label on nested filesShow “Inherited from project”
Deprecated labels still selectableTaxonomy chaosDeprecate → map to replacement
Bulk re-label without previewMass misclassificationPreview + staged rollout
No audit on label changeCompliance gapLog every apply, override, downgrade

  1. Design taxonomy table with sensitivity rank, visual chip, and linked DLP policies.
  2. Build inline label picker on file/project headers with inheritance badges.
  3. Add auto-tag rules with gap report and suggested-label prompts.
  4. Wire share dialog to show label-driven restrictions before commit.
  5. Spec downgrade approval queue aligned with DLP exception patterns.
  6. Create bulk re-label wizard with preview and audit trail.
  7. Document evaluation order (org minimum > project > file > page) in Dev Mode.

FAQ

Do labels apply to API exports?

Yes—API and automation paths should evaluate label policy on export; document in developer settings.

Can members create custom labels?

Usually no—taxonomy is admin-only; members apply from approved list to prevent sprawl.

How do labels interact with guest invites?

Guest-accessible files may cap at Internal—Confidential files block guest invite at share time.

What if auto-tag and manual label conflict?

Manual wins unless org enables “auto-tag enforce”—show mismatch banner until resolved.

Deprecated label on 500 files?

Bulk migrate wizard maps deprecated → replacement with compliance sign-off.


Next steps

Share on X

§ Keep reading

Related guides.