Categories: Cyber Security News

Microsoft Purview DLP Restricts Microsoft 365 Copilot from Handling Sensitive Emails

Microsoft has announced expanded Data Loss Prevention (DLP) capabilities to restrict Microsoft 365 Copilot from processing emails with sensitivity labels, addressing growing concerns about AI-driven data risks.

The feature, tied to Microsoft 365 Roadmap ID 489221, will enter public preview in June 2025 and reach general availability (GA) by August 2025.

This update ensures sensitive emails sent on or after January 1, 2025, are excluded from Copilot’s response summarization and grounding processes.

Overview of the New DLP Feature

The enhancement allows organizations to apply existing or new DLP policies to block Copilot from referencing emails marked with labels like Highly Confidential or Personal in chat interactions. Key aspects include:

  • Automated policy extension: Tenants with pre-existing DLP policies at the Microsoft 365 Copilot (preview) location will see these policies automatically apply to emails without admin intervention.
  • Limited preview capabilities: Alerts, audit logs, and policy simulation tools are unavailable during the preview phase.
  • License flexibility: A Microsoft 365 Copilot license is not required to configure or enforce these policies.

Administrators can create rules using the Content contains > Sensitivity labels condition in the Microsoft Purview portal, leveraging Microsoft’s Data Security Posture Management for AI (DSPM for AI) for centralized oversight.

Technical Implementation and Integration

The DLP update integrates with Microsoft’s broader information protection framework:

  • Sensitivity label enforcement: Copilot checks for VIEW and EXTRACT rights before processing labeled content, ensuring compliance with encryption settings.
  • For example, a document with Highly Confidential encryption will be excluded from summaries unless users have explicit access.
  • Cross-workload support: While initial DLP policies for Copilot focused on SharePoint and OneDrive, the new feature extends coverage to Exchange Online emails.
  • Automated inheritance: New content generated by Copilot inherits the highest-priority sensitivity label from source materials, maintaining consistent protection.

Testing methodologies, such as those documented by Office 365 IT Pros, highlight how labeled documents are silently excluded from Copilot search results, leaving no trace of restricted data.

Sponsored

Risk Factors and Mitigation Strategies

Risk Factor Mitigation Strategy
Data leakage via AI summarization Apply sensitivity labels with encryption and configure DLP policies to block Copilot access.
Compliance violations Use DSPM for AI to identify unlabeled sensitive data and generate label policies.
User disruption Train teams on Copilot’s updated behavior using Microsoft Mechanics tutorials10.
Policy misconfiguration Test policies in audit mode pre-deployment and monitor via Purview activity logs.

This update reinforces Microsoft’s commitment to secure AI adoption, enabling organizations to balance productivity gains with robust data governance.

IT teams should review sensitivity label taxonomies and leverage Purview’s Conditional Access integrations to preempt oversharing risks.

As Copilot’s capabilities expand into apps like Word and Excel, proactive DLP configuration will be critical to maintaining compliance in generative AI workflows.

Find this Story Interesting! Follow us on LinkedIn and X to Get More Instant Updates

The post Microsoft Purview DLP Restricts Microsoft 365 Copilot from Handling Sensitive Emails appeared first on Cyber Security News.

rssfeeds-admin

Recent Posts

Imagine’s Steve Reynolds Discusses Impact Of Pixel Power Acquisition

The post Imagine’s Steve Reynolds Discusses Impact Of Pixel Power Acquisition appeared first on TV…

1 minute ago

ATSC Appoints Anil Bhardwaj Director of Technology & Strategy For India & Emerging Markets

Anil Bhardwaj Broadcast standards association ATSC has named Indian broadcasting executive Anil Bhardwaj as director of…

1 minute ago

Telestream Expands AI Capabilities Across Media Workflow Portfolio

Telestream is expanding practical AI enhancements across its Vantage, Vantage Cloud, EDC, Stanza and Qualify product lines to unify operations across on-premises,…

1 minute ago

Teatro Alla Scala Elevates Backstage Communication With Riedel’s Bolero Wireless Intercom System

Riedel Communications today announced that Fondazione Teatro alla Scala has deployed a comprehensive wireless intercom…

1 minute ago

NAB Show: Netgear to Showcase Expanded Broadcast Portfolio

At the 2026 NAB Show in Las Vegas, April 18-22, Netgear will highlight its new…

1 minute ago

IBC 2026 To Partner With EIT Culture & Creativity

IBC today announced a new strategic partnership with EIT Culture & Creativity — the institutional partnership for culture…

1 minute ago

This website uses cookies.