Microsoft Purview compliance portal: Endpoint Data Loss Prevention: Collection Policies: Scope classifiers and activity to track on all Windows devices

🚨 The Signal: Purview Endpoint DLP now allows granular scoping of Sensitive Information Types and activities for specific users on Windows devices, enhancing data protection by targeting policies more precisely. This improves control over sensitive data movement.

The Impact

Security teams and compliance officers are affected, gaining enhanced control over sensitive data exfiltration risks on Windows endpoints.

• Security Teams: Reduced risk of sensitive data exfiltration.
• Compliance Officers: Improved ability to meet data protection regulations.
• IT Admins: More precise policy deployment, fewer user disruptions.
• End Users: Less intrusive DLP enforcement due to targeted policies.

The Action

1. Navigate to Microsoft Purview compliance portal > Data loss prevention > Policies.
2. Create or edit an Endpoint DLP policy.
3. Under 'Devices' settings, configure 'Scope classifiers and activity to track on all Windows devices'.
4. Define specific Sensitive Information Types (SITs) and activities to monitor.
5. Assign the policy to specific users or groups for targeted enforcement.

Domain: Purview · Impact: high · Workload: Microsoft Purview