SharePoint: Copilot actions in SharePoint document libraries

🚨 The Signal: Copilot actions are expanding to SharePoint document libraries and Teams, enabling AI-driven content interaction directly within these platforms. This increases the surface area for AI-assisted data access and potential data exfiltration if not properly governed.

The Impact

All users interacting with SharePoint and Teams document libraries are affected, increasing the risk of unintended data exposure or misuse through AI-driven actions.

• End-users: Increased risk of accidental data sharing or exposure via Copilot actions.
• Security Teams: New audit requirements for AI-driven data access and modification.
• Data Owners: Potential for data misuse if Copilot's access is not appropriately restricted.
• Compliance Officers: Need to update data handling policies for AI-assisted operations.

The Action

1. Review and update Microsoft Purview Data Loss Prevention (DLP) policies to include Copilot interactions with sensitive data in SharePoint and Teams. (Microsoft Purview compliance portal > Data loss prevention > Policies)
2. Audit existing SharePoint site permissions and sensitivity labels to ensure least privilege is enforced for content accessible by Copilot. (SharePoint admin center > Sites > Active sites)
3. Educate users on responsible use of Copilot actions, emphasizing data sensitivity and sharing implications. (Internal communication channels)
4. Monitor Microsoft 365 audit logs for Copilot activities, focusing on unusual data access or sharing patterns. (Microsoft Purview compliance portal > Audit)
5. Evaluate and configure Copilot for Microsoft 365 data governance settings to align with organisational data residency and compliance requirements. (Microsoft 365 admin center > Settings > Org settings > Microsoft Copilot)

Domain: Agentic-AI · Impact: high · Workload: SharePoint