Microsoft Purview compliance portal: Data Loss Prevention - New inline data protection in Edge for Business for unmanaged Windows and macOS devices

🚨 The Signal: Microsoft Purview DLP now extends data protection to unmanaged Windows and macOS devices via Edge for Business. This prevents data exfiltration from Entra-authenticated cloud apps, enhancing security for BYO scenarios.

The Impact

Security teams are affected by new DLP capabilities, reducing the risk of data exfiltration from unmanaged devices.

• Security Teams: New DLP capabilities reduce data exfiltration risk.
• Compliance Officers: Improved ability to meet data protection requirements.
• End Users on BYO Devices: Data sharing restricted by new browser policies.

The Action

1. Navigate to Microsoft Purview compliance portal > Data loss prevention > Policies.
2. Create or modify a DLP policy targeting 'Devices' and 'Microsoft Edge for Business'.
3. Configure rules to detect and restrict data exfiltration from Entra-authenticated cloud apps.
4. Define actions for unmanaged devices, such as 'Block' or 'Block with override'.
5. Deploy and monitor the DLP policy for Edge for Business on unmanaged devices.

Domain: Purview · Impact: high · Workload: Microsoft Purview · Essential Eight: User Application Hardening · ISM: ISM-1412, ISM-1485, ISM-1486, ISM-1542, ISM-1585, ISM-1667, ISM-1668, ISM-1669, ISM-1670, ISM-1823, ISM-1824, ISM-1859, ISM-1860