MC1105017 – Microsoft Purview | Data Loss Prevention: Restrict Microsoft 365 Copilot using content with sensitivity labels

Product:

Copilot, Microsoft 365 Copilot, Purview Communication Compliance, Purview Data Loss Prevention, Purview Information Protection, SharePoint

Platform:

Online, Web, World tenant

Status:

Rolling out

Change type:

New feature, Admin impact

Links:

423483

Details:

Summary:
Microsoft Purview Data Loss Prevention (DLP) for Microsoft 365 Copilot is now generally available, allowing organizations to use DLP policies to detect sensitivity labels and restrict access to sensitive content. The rollout begins in late June 2025 and completes by late July 2025. Admins can edit or create new policies and use alerting and simulation features.

Details:
We're introducing General Availability (GA) for Microsoft Purview Data Loss Prevention (DLP) for Microsoft 365 Copilot. This update enhances your organization's data protection capabilities by enabling DLP policies to detect sensitivity labels in enterprise grounding data and restrict access to sensitive content within Microsoft 365 Copilot. With GA, alerting and policy simulation capabilities will also be available.
This message is associated with Microsoft 365 Roadmap ID: 423483.
[When this will happen:]
General Availability (Worldwide): Rollout will begin in late June 2025 and is expected to complete by late July 2025.

Change Category:
XXXXXXX ... free basic plan only

Scope:
XXXXXXX ... free basic plan only

Release Phase:
General Availability, Preview

Created:
2025-06-28

updated:
2025-06-28

Public Preview Start Date

XXXXXXX ... free basic plan only

Task Type

XXXXXXX ... free basic plan only

Docu to Check

XXXXXXX ... free basic plan only

MS How does it affect me

XXXXXXX ... free basic plan only

MS Preperations

XXXXXXX ... free basic plan only

MS Urgency

XXXXXXX ... free basic plan only

MS workload name

XXXXXXX ... free basic plan only

linked item details

XXXXXXX ... free basic plan only

Pictures

XXXXXXX ... free basic plan only

summary for non-techies**

Microsoft has introduced a new feature for Microsoft 365 Copilot that enhances data protection by using Data Loss Prevention (DLP) policies to restrict access to documents with sensitivity labels, requiring configuration by admins for implementation.

Direct effects for Operations**

Data Processing Changes
The introduction of DLP policies will change how existing customer data is processed and accessed, potentially leading to unauthorized access if not properly configured.
   - roles: Admins, Data Protection Officers
   - references: https://learn.microsoft.com/purview/dlp-learn-about-dlp?view=o365-worldwide

AI Interaction Modifications
The integration of DLP with Microsoft 365 Copilot modifies how AI agents handle sensitive data, which could lead to data leaks if policies are not in place before the change.
   - roles: AI Developers, Data Analysts
   - references: https://learn.microsoft.com/purview/dlp-microsoft365-copilot-location-learn-about

Compliance Monitoring
New alerting and simulation features will change how admins monitor compliance activities, risking non-compliance if not properly utilized.
   - roles: Compliance Officers, IT Security Managers
   - references: https://www.microsoft.com/microsoft-365/roadmap?rtc=1%26filters%3D&searchterms=423483

Configutation Options**

XXXXXXX ... paid membership only

Opportunities**

Enhanced Data Security Monitoring
The introduction of alerting and simulation features in DLP policies allows for proactive monitoring of sensitive data access within Microsoft 365 Copilot. This enhances the organization’s ability to detect and respond to potential data breaches or misuse of sensitive information.
   - next-steps: Implement training for IT security teams on the new alerting and simulation features. Schedule regular reviews of DLP policy effectiveness and adjust as necessary based on alerts and simulation outcomes.
   - roles: IT Security Manager, Compliance Officer, Data Protection Officer
   - references: https://learn.microsoft.com/purview/dlp-learn-about-dlp?view=o365-worldwide, https://learn.microsoft.com/purview/dlp-microsoft365-copilot-location-learn-about

Improved Compliance Reporting
With the new capabilities for monitoring and reporting on DLP policy enforcement, admins can better demonstrate compliance with data protection regulations. This can simplify audits and enhance the organization's compliance posture.
   - next-steps: Develop a compliance reporting framework utilizing the new DLP monitoring features. Conduct workshops for compliance teams to ensure they understand how to leverage these tools for audits.
   - roles: Compliance Officer, IT Administrator, Risk Manager
   - references: https://learn.microsoft.com/purview/dlp-learn-about-dlp?view=o365-worldwide, https://www.microsoft.com/microsoft-365/roadmap?rtc=1%26filters%3D&searchterms=423483

Streamlined Policy Management
The ability to edit existing DLP policies and create new ones specifically for Microsoft 365 Copilot allows for more tailored data protection strategies. This can lead to more efficient management of sensitive data across the organization.
   - next-steps: Conduct an assessment of current DLP policies to identify areas for improvement. Set up a schedule for regular policy reviews and updates to ensure they align with evolving business needs and compliance requirements.
   - roles: IT Administrator, Data Protection Officer, Business Unit Managers
   - references: https://learn.microsoft.com/purview/dlp-learn-about-dlp?view=o365-worldwide, https://learn.microsoft.com/purview/dlp-microsoft365-copilot-location-learn-about

Potentional Risks**

XXXXXXX ... paid membership only

Data Protection**

XXXXXXX ... paid membership only

IT Security**

XXXXXXX ... paid membership only

Hypothetical Work Council Statement**

XXXXXXX ... paid membership only

DPIA Draft**

XXXXXXX ... paid membership only

explanation for non-techies**

XXXXXXX ... free basic plan only