diff --git a/Policies/database_exposure.policy.yml b/Policies/database_exposure.policy.yml
index 45e45ef..6b79a2e 100644
--- a/Policies/database_exposure.policy.yml
+++ b/Policies/database_exposure.policy.yml
@@ -28,7 +28,8 @@ parameters:
     description: 'Database file extensions to look for.'
     type: string
   exclude:
-      default:
-        - core
-      description: 'Directories to exclude from find'
+    default:
+      - core
+      - sites/default/files/private
+    description: 'Directories to exclude from find'
 severity: 'critical'