527832 – Microsoft Purview: DSPM data risk assessments: item-level investigation & remediation

Product:

Purview, Purview Communication Compliance, Purview compliance portal, Purview Information Protection, SharePoint

Platform:

Web, World tenant

Status:

In development

Change type:

Links:

Details:

Microsoft Purview Data risk assessments now support item-level investigation and remediation of SharePoint data. New insights like sensitivity label and sharing link information help users identify items at risk of oversharing. Users are empowered to remediate overshared items by resolving, notifying, applying a sensitivity label, or removing sharing links for selected item(s). This helps organizations proactively reduce data exposure, strengthen compliance posture, and ensure sensitive data are only accessible to the right people.

Change Category:
XXXXXXX ... free basic plan only

Scope:
XXXXXXX ... free basic plan only

Release Phase:
General Availability, Preview

Created:
2025-12-18

updated:
2026-01-21

Public Preview Start Date

XXXXXXX ... free basic plan only

Docu to Check

XXXXXXX ... free basic plan only

MS workload name

XXXXXXX ... free basic plan only

summary for non-techies**

XXXXXXX ... free basic plan only

Direct effects for Operations**

Data Exposure Risk
Without proper preparation, the implementation of item-level investigation may lead to unintentional data exposure if users misinterpret sensitivity labels or sharing link information, resulting in sensitive data being shared with unauthorized individuals.
   - roles: Compliance Officer, Data Protection Officer
   - references: https://www.microsoft.com/en-us/security/blog/2022/10/12/understanding-data-exposure-risks-in-the-cloud/, https://www.microsoft.com/en-us/security/blog/2023/01/10/mitigating-data-exposure-risks-in-sharepoint/

User Confusion and Errors
If users are not adequately trained on the new features, they may struggle with the item-level remediation process, leading to errors in applying sensitivity labels or managing sharing links, which can compromise data security.
   - roles: End User, IT Support Specialist
   - references: https://www.microsoft.com/en-us/microsoft-365/blog/2023/02/15/empowering-users-to-manage-data-security-in-sharepoint/, https://www.forbes.com/sites/bernardmarr/2023/03/01/the-importance-of-user-training-in-data-security/?sh=5c1e1e4e1b3e

Configutation Options**

XXXXXXX ... paid membership only

Data Protection**

XXXXXXX ... paid membership only

IT Security**

XXXXXXX ... paid membership only

explanation for non-techies**

Imagine your office is like a library. In this library, there are books (or documents) that are meant for everyone, and then there are special books that only certain people should see. Microsoft Purview's new features are like having a smart librarian who helps manage these books to ensure they are seen by the right people.

With the new item-level investigation and remediation for SharePoint data, it's like the librarian can now look at each book individually to check if it's in the right section. If a book that should be in the "staff only" section is found in the public area, the librarian can take action. This might mean moving the book to the correct section, putting a special label on it to indicate who can see it, or even taking it off the shelf if it's not supposed to be shared at all.

The sensitivity label is like a sticker on the book that tells the librarian how important or confidential it is. Sharing link information is like a note that tells the librarian who has borrowed the book or who has access to it. By using these tools, the librarian (or in this case, the IT system) helps ensure that only the right people have access to sensitive information, much like making sure only authorized people can read certain books in the library.

This system helps organizations keep their data safe, much like how a library keeps its valuable books secure. It ensures that sensitive information is not overshared and is only accessible to those who need it, maintaining a strong compliance posture.