Microsoft Copilot (Microsoft 365): Add topic(s) through Copilot to your existing presentation

🚨 The Signal: Copilot in Microsoft 365 can now generate new presentation topics and slides, maintaining existing formatting. This expands AI content creation capabilities, increasing potential for sensitive data exposure if not governed correctly.

The Impact

All users are affected, increasing the risk of inadvertent disclosure of sensitive information through AI-generated content.

• End-users: Risk of generating and sharing sensitive data unknowingly.
• Security Teams: Increased surface area for data loss prevention (DLP) monitoring.
• Compliance Officers: New challenges in attesting to data handling policies.
• Managers: Need to reinforce responsible AI use and data classification.

The Action

1. Review and update existing Microsoft Purview Data Loss Prevention (DLP) policies to include Copilot-generated content.
2. Educate users on responsible AI use, data classification, and the risks of sharing sensitive information via Copilot.
3. Monitor Microsoft Purview audit logs for Copilot activities involving sensitive data.
4. Implement or reinforce sensitivity labels for presentations containing classified information.
5. Review Copilot access policies to ensure only authorized personnel can generate content with sensitive data.

Domain: Agentic-AI · Impact: high · Workload: M365 Apps