Encrypted home is typically setup as ~/.Private, not ~/Private and the policy already allows:
owner @{HOME}/.Private/** mrixwlk, owner @{HOMEDIRS}/.ecryptfs/*/.Private/** mrixwlk,
The home interface should already allow ~/Private. What is the denial you see in the logs?
Encrypted home is typically setup as ~/.Private, not ~/Private and the policy already allows:
owner @{HOME}/.Private/** mrixwlk, /.ecryptfs/ */.Private/ ** mrixwlk,
owner @{HOMEDIRS}
The home interface should already allow ~/Private. What is the denial you see in the logs?