Enterprise data classification for Confluence

Mark it. Roll it up. Enforce who can see it.

Classifier for Confluence brings government-grade classification markings into everyday wiki work — inline on content, on every page banner, and wired directly into Confluence group permissions.

TOP SECRET // SCI // REL TO USA, CAN
Inline macro Auto rollup

Authors classify paragraphs, images, and whole pages. The system calculates the strictest banner and updates access automatically.

DoD · NATO · ISO

Pre-built templates plus fully custom schemes

Inline + banner

Mark content in-place; page rollup stays in sync

Group-native

Uses your existing Confluence groups — no parallel ACL system

Data Center

Built for regulated, clustered deployments

The problem we solve

Teams store sensitive material in Confluence every day. Labels in page titles and honor-system markings do not scale — and they do not enforce access.

Inconsistent markings

Authors write classifications differently. Banners drift from body content. Auditors cannot trust what they see.

Permissions lag content

A page says Secret but still inherits broad space access. Fixing it manually is slow and error-prone.

Mixed sensitivity on one page

One wiki page may contain multiple compartments. You need page access and paragraph-level control.

What Classifier delivers

One integrated workflow from author to administrator — configuration, classification, rollup, banner display, and permission enforcement.

Author-friendly classification

  • Three-column picker for level, compartment, and release-to
  • Classify selected text, images, and block content inline
  • Automatic conversion of typed markers into proper macros on save
  • Page banner reflects the strictest classification on the page

Permission enforcement that fits Confluence

  • Maps each classification to a real Confluence group
  • Updates page restrictions when the banner changes
  • Most-restrictive or selective modes for different mission needs
  • Optional space-level classification policies for controlled programs

Administrator control

  • React admin console for levels, compartments, releases, and rollup rules
  • Import JSON templates (DoD, NATO, UK, ISO, business, and more)
  • Configurable banner colors, separators, and group naming
  • License-aware — configuration and saves respect your entitlement

Space-level governance

  • Force a classification baseline for an entire program space
  • Restrict which markings are valid inside a space
  • Space default classification for new or empty pages
  • Space group prefixes for multi-tenant group naming

Two ways to protect content — you choose

Different organizations need different balance between openness and compartmentalization. Classifier supports both without bolting on a separate security product.

Most restrictive

Only members of the page's banner classification group (plus admins) can open the page. Best when every page should match its highest marking.

Selective restriction Default

Users with normal space access can open the page, but classified paragraphs they are not cleared for simply do not render. Collaboration continues; sensitive passages stay hidden.

"We did not want another siloed DLP tool. We wanted classification markings authors already understand — enforced through the groups IT already manages in Confluence."

— Typical program security officer evaluation criteria

From install to enforced page in four steps

  1. 1

    Configure your scheme

    Define levels, compartments, release-to values, and rollup formatting. Start from a template or import JSON.

  2. 2

    Create matching Confluence groups

    Each classification used for access control needs a group with the configured name. Classifier validates groups before save.

  3. 3

    Authors classify as they write

    Select text, pick a marking, publish. The rollup dialog confirms the page banner before save completes.

  4. 4

    Access updates automatically

    Page restrictions align to the banner group. Viewers see only what their group membership allows.

Built for regulated environments

Standards-ready templates

DoD, NATO, UK, Canada, Australia, ISO 27001, and corporate schemes — or roll your own.

Audit-friendly storage

Banner, rollup, and classification metadata persist on the page — not just in the editor session.

Server-side enforcement

Macro redaction and permission checks happen on the server. UI hiding is convenience, not the security boundary.

Ready to classify Confluence the way your policy expects?

Deploy Classifier for Confluence on Confluence 9+ Data Center or Server. We will walk your security, Confluence admin, and author teams through configuration and a live classification save.

Churrie Works Inc. · churrieworks.com · Confluence 9+ · Data Center compatible