Microsoft Purview compliance portal: eDiscovery (Premium) - CMK (Customer Managed Keys) encryption support for data at-rest in Review sets

🚨 The Signal: Microsoft Purview eDiscovery (Premium) now supports Customer Managed Keys (CMK) for data at-rest in Review sets. This enhances data sovereignty and control over encryption keys beyond Microsoft's default encryption, reducing reliance on Microsoft-managed keys for sensitive legal data.

The Impact

Security teams and compliance officers are affected, gaining enhanced control over data encryption keys, reducing risk of unauthorised data access.

• Security Teams: Gain direct control over encryption keys, reducing data breach risk.
• Compliance Officers: Easier to meet stringent data sovereignty and regulatory requirements.
• Legal Teams: Enhanced protection for sensitive eDiscovery data.
• Data Owners: Increased assurance of data confidentiality and integrity.

The Action

1. Review Purview eDiscovery (Premium) licensing for CMK eligibility.
2. Plan key vault strategy for CMK integration (Azure Key Vault).
3. Configure CMK in Microsoft Purview compliance portal for eDiscovery Review sets.
4. Establish key rotation and lifecycle management procedures.

Domain: Purview · Impact: high · Workload: Microsoft Purview