489221 – Microsoft Purview Compliance Portal: Data Loss Prevention to restrict Microsoft 365 Copilot processing on emails with sensitivity labels

Product:

Copilot, Microsoft 365 Copilot, Purview, Purview Communication Compliance, Purview compliance portal, Purview Data Loss Prevention, Purview Information Protection

Platform:

Web, World tenant

Status:

Launched

Change type:

Links:

MC1088731

Details:

Microsoft Purview Data Loss Prevention (DLP) is extended to preventing Microsoft 365 Copilot from processing emails with sensitivity labels. This feature will allow DLP policies to provide detection of sensitivity labels in emails as enterprise grounding data and restrict access of the labeled emails in Microsoft 365 Copilot chat experiences. This feature only works for emails on or after 1/1/2025. #copilotcontrolsystem

Change Category:
XXXXXXX ... free basic plan only

Scope:
XXXXXXX ... free basic plan only

Release Phase:
General Availability, Preview

Created:
2025-05-02

updated:
2026-01-21

Public Preview Start Date

XXXXXXX ... free basic plan only

Docu to Check

XXXXXXX ... free basic plan only

MS workload name

XXXXXXX ... free basic plan only

summary for non-techies**

XXXXXXX ... free basic plan only

Direct effects for Operations**

Please, look at the most relevant linked item for details

explanation for non-techies**

Imagine you have a highly confidential document, like a legal contract or a sensitive HR report, and you place it in a locked file cabinet to ensure only authorized people can access it. Now, think of Microsoft Purview Data Loss Prevention (DLP) as a digital version of that locked cabinet. It helps protect sensitive information by ensuring that only the right people can access it, even in the digital world.

Recently, Microsoft has extended this protection to include emails that are processed by Microsoft 365 Copilot, a tool that helps users by providing AI-driven assistance. Think of Copilot as a digital assistant that can help you draft emails, summarize documents, or even schedule meetings. However, just like you wouldn't want your assistant to read or use sensitive documents without permission, you also want to ensure that Copilot doesn't process sensitive emails without the proper controls.

To achieve this, Microsoft has introduced a feature that works like a filter. It detects sensitivity labels on emails, which are like digital tags that indicate the level of confidentiality of the content. If an email is labeled as sensitive, the DLP policies can restrict Copilot from accessing or processing it. This is similar to having a rule that your assistant can't open certain drawers in your file cabinet.

This feature will be available for emails starting from January 1, 2025. It ensures that sensitive information remains protected, even when using advanced tools like Microsoft 365 Copilot. By doing so, it helps organizations maintain control over their confidential data while still benefiting from the efficiencies of AI technology.