Microsoft Copilot (Microsoft 365): Copilot Chat now offers meeting series selection on CIQ Menu

🚨 The Signal: Copilot Chat can now access entire meeting series, not just single instances, when processing user prompts. This expands the scope of sensitive information Copilot can summarise and potentially expose if not properly governed.

The Impact

All users interacting with Copilot Chat are affected, increasing the risk of unintended sensitive information exposure from recurring meetings.

• End Users: Risk of oversharing sensitive meeting series data via Copilot.
• Security Teams: Increased data exposure surface requires stricter Copilot governance.
• Compliance Teams: New challenge in maintaining data privacy and regulatory adherence.
• Admins: Need to review Copilot data access and retention policies for meeting series.

The Action

1. Review and reinforce Microsoft Purview Data Loss Prevention (DLP) policies for Copilot interactions.
2. Educate users on responsible prompting, specifically regarding sensitive content in meeting series.
3. Monitor Copilot usage logs for unusual access patterns to meeting series data.
4. Evaluate Microsoft 365 sensitivity labels for meeting content and enforce their use.

Domain: Agentic-AI · Impact: high · Workload: Other