Microsoft Purview: Data Loss Prevention - Collection and DLP Policies for Intune-Policy Managed Apps

🚨 The Signal: Microsoft Purview DLP now protects sensitive data in Intune-managed mobile apps. This prevents data leakage from clipboard actions, enhancing mobile security and reducing insider risk.

The Impact

Mobile users are affected, reducing the risk of sensitive data exfiltration from managed applications.

  • Mobile users: Reduced ability to copy sensitive data from managed apps.
  • Security teams: Enhanced control over data movement on mobile devices.
  • Compliance officers: Improved adherence to data protection policies.
  • Organisations: Lowered risk of data leakage and insider threats.

The Action

  1. Review existing Microsoft Purview DLP policies for mobile app applicability.
  2. Create new DLP policies targeting Intune MAM-protected apps for clipboard actions.
  3. Configure Purview Collection policies to govern sensitive data handling in mobile apps.
  4. Communicate new DLP restrictions to mobile users of managed applications.
  5. Monitor DLP alerts and incidents related to mobile app data exfiltration attempts.

Domain: Purview · Impact: high · Workload: Microsoft Purview