Microsoft Copilot (Microsoft 365): Support for summarization of very long documents

🚨 The Signal: Microsoft Copilot in Word can now summarize documents up to 1.5 million words. This significantly increases the volume of sensitive information that can be processed and potentially exposed through AI summarization.

The Impact

All users are affected, with a high risk of sensitive data exposure through Copilot's enhanced summarization capabilities.

• End Users: Increased risk of inadvertently exposing sensitive data via summarization.
• Security Team: New vectors for data leakage and intellectual property compromise.
• Compliance Officers: Challenges in maintaining data governance and regulatory compliance.
• Legal Teams: Potential for legal and reputational damage from data breaches.

The Action

1. Review and update existing Microsoft 365 Copilot data governance policies to address large document summarization.
2. Educate end-users on responsible AI usage, emphasizing the classification and sensitivity of documents summarized by Copilot.
3. Implement or refine Microsoft Purview Data Loss Prevention (DLP) policies to detect and prevent oversharing of summarized sensitive content.
4. Monitor Copilot usage logs for unusual activity related to large document processing and summarization.
5. Assess the necessity of restricting Copilot access for specific user groups or document types based on sensitivity.

Domain: Agentic-AI · Impact: high · Workload: M365 Apps