Outlook: Summarize email with Copilot chat in Outlook

🚨 The Signal: Copilot in Outlook for iOS/Android can now summarize emails and attachments. This introduces new data exposure risks for sensitive information processed by AI on mobile devices, requiring careful governance.

The Impact

Mobile users with Copilot licenses are affected, increasing the risk of sensitive data exposure through AI summarization.

• Mobile users: Risk of sensitive data being processed by AI without explicit consent.
• Security teams: Need to monitor and audit Copilot usage on mobile for data exfiltration.
• Data owners: Potential for sensitive information to be exposed in AI-generated summaries.
• Compliance officers: New considerations for data residency and privacy with AI processing.

The Action

1. Review and update Microsoft 365 Copilot data governance policies for mobile devices.
2. Educate users on responsible use of Copilot summarization, especially with sensitive data.
3. Monitor Copilot activity logs for unusual data access or summarization patterns.
4. Assess existing mobile device management (MDM) policies for Copilot integration and data handling.

Domain: Agentic-AI · Impact: medium · Workload: M365 Apps