Microsoft Purview compliance portal: Data Loss Prevention - Decoupling of Policy tips and Email notifications while configuring rules on Data Loss Prevention for Sharepoint and Onedrive

🚨 The Signal: Microsoft Purview DLP now allows separate configuration of policy tips and email notifications for SharePoint/OneDrive. This enables more granular control over user warnings and security team alerts, improving incident response flexibility without forcing user-facing notifications.

The Impact

Security teams and DLP administrators are affected, gaining more flexible control over data loss prevention alerts and user guidance, reducing potential over-notification.

• DLP Administrators: Can now fine-tune DLP policy responses, separating user education from incident alerting.
• Security Teams: Gain flexibility in receiving immediate email notifications for DLP incidents without user-facing policy tips.
• End Users: May experience fewer policy tips if administrators opt for email-only notifications to security teams.

The Action

1. Navigate to Microsoft Purview compliance portal > Data loss prevention > Policies.
2. Edit an existing DLP policy or create a new one for SharePoint/OneDrive.
3. In the 'Policy settings' or 'Incident reports' section, locate 'User notifications'.
4. Configure 'Policy tips' and 'Email notifications' independently based on organizational requirements.
5. Review and publish the updated DLP policy.

Domain: Purview · Impact: medium · Workload: Microsoft Purview