diff --git a/kube/deploy/core/kyverno/policies/anti-delete-all-persistence.yaml b/kube/deploy/core/kyverno/policies/anti-delete-all-persistence.yaml
index c875df30..2e7f27bb 100644
--- a/kube/deploy/core/kyverno/policies/anti-delete-all-persistence.yaml
+++ b/kube/deploy/core/kyverno/policies/anti-delete-all-persistence.yaml
@@ -14,6 +14,11 @@ spec:
           - resources:
               kinds: ["v1/Namespace", "v1/PersistentVolumeClaim", "v1/PersistentVolume", "postgresql.cnpg.io/*/Cluster", "postgres-operator.crunchydata.com/*/PostgresCluster"]
               operations: ["DELETE"]
+              selector:
+                matchExpressions:
+                  - key: "kyverno.home.arpa/delete"
+                    operator: "NotIn"
+                    values: ["CONFIRM-DELETE"]
       validate:
         deny: {}
         message: |