It looks OK. You routinely run in Locked Down mode while surfing, that is the single most important factor in securing your system. Creating additional policies are for "just-in-case" and to counter "corner" cases. However, it is best practice not to add any programs to Power Apps unless something is obviously broken. If HMP is launching from C:\Program Files or C:\Program Files (x86), then you do not need to make it a Power App. If you are using the portable version and it launches from User Space (AppData), then it should be added to Power Apps. Same for any other portable security soft you are using. Based upon my prior experience and observations EIS, HMPA and MBAM don't need to be added to Power Apps as AppGuard didn't break any of their functionality during testing.