As of today, there is no way the user can exclude a database if the protection is configured at the instance level.
You must create a 'Resource Group' at the database level, including all individual Dbs of that instance. Then you can modify the resource group whenever required to exclude or include any newly created DBs