Microsoft Viva: Copilot Dashboard - Enhanced scope drilldown

🚨 The Signal: Copilot Dashboard now allows leaders to drill down into Copilot adoption data by indirect groups. This enhances visibility into how Copilot is used across the organisation, aiding governance and identifying potential data exposure risks.

The Impact

Security teams and data owners are affected by enhanced visibility into Copilot usage, which can expose previously unseen data access patterns and potential oversharing risks.

• Security teams: Risk of identifying previously unknown data access patterns via Copilot.
• Data owners: Risk of discovering unintended data exposure through Copilot interactions.
• Compliance officers: Risk of non-compliance if Copilot usage reveals unmanaged data access.
• AI governance teams: Risk of identifying unapproved or risky Copilot use cases.

The Action

1. Review Copilot Dashboard data for unusual or high-risk usage patterns.
2. Cross-reference Copilot usage with Microsoft Purview Data Loss Prevention (DLP) policies.
3. Educate users on responsible data handling when interacting with Copilot.
4. Assess existing data access controls in SharePoint and OneDrive for least privilege.

Domain: Agentic-AI · Impact: medium · Workload: Microsoft Purview