Microsoft Purview Compliance Portal: Data Loss Prevention: DLP to restrict Microsoft 365 Copilot processing on emails with sensitivity labels

🚨 The Signal: Microsoft Purview DLP now prevents Microsoft 365 Copilot from processing emails with sensitivity labels. This enhances data protection by restricting Copilot's access to sensitive email content, reducing the risk of unintended data exposure via AI.

The Impact

Security teams and end-users are affected by enhanced data protection, reducing the risk of sensitive information exposure through AI.

• Security teams: Reduced risk of sensitive data exposure via Copilot.
• End-users: Copilot will not process sensitive emails, requiring manual information retrieval.
• Compliance officers: Improved adherence to data handling regulations.
• Data owners: Greater assurance that sensitive email content is protected from AI processing.

The Action

1. Review existing Microsoft Purview DLP policies for email content.
2. Ensure sensitivity labels are correctly applied to sensitive email data.
3. Validate DLP policy scope to include Microsoft 365 Copilot.
4. Communicate Copilot's restricted access to sensitive emails to end-users.

Domain: Purview · Impact: high · Workload: Microsoft Purview