The Whitelisting folder includes the following built-in policies:
Allow Manual Security Rated Whitelist Execution - This policy allows whitelisted applications to run unmanaged by Application Control and prevents graylist Application Control Policies from applying to whitelisted applications.
Allow Microsoft Installer Policy - This policy allows any child process of Windows Installer to execute. This prevents Windows Installer child processes falling under any Unclassified Applications policies.
Deny Manual Security Rated Blacklist Execution - This policy prevents execution of any files marked with a manual security rating of 'blacklist.'