check before: 2025-11-15
Product:
Copilot, Copilot Chat, Entra, Microsoft 365 admin center, Microsoft 365 Copilot, Microsoft Graph, Purview, Purview Communication Compliance, Purview compliance portal, Purview Data Loss Prevention
Platform:
Developer, Online, Web, World tenant
Status:
In development
Change type:
Admin impact, New feature, Updated message
Links:
(MC1181998)
523212
Details:
Summary:
Microsoft Purview introduces new Copilot security controls in Microsoft Admin Center, including a default DLP policy in simulation mode, visibility into oversharing risks, and admin-configurable protections. Rollout begins mid-November 2025 (preview) and mid-January 2026 (general availability). Entra admin roles are required for policy management.
Details:
Updated November 12, 2025: We have updated the content. Thank you for your patience.
[Introduction]
To help organizations adopt Microsoft 365 Copilot securely, Microsoft Purview is introducing new capabilities in Microsoft Admin Center. These enhancements allow AI and IT admins to gain visibility into oversharing risks, remediate issues, and apply a new Data Loss Prevention (DLP) policy directly within Microsoft Admin Center. This update supports secure usage of Copilot by enabling protection of sensitive interactions.
This message is associated with Microsoft 365 Roadmap ID 523212.
[When this will happen:]
Public Preview: We will begin rolling out mid-November 2025 and expect to complete by late November 2025.
General Availability (Worldwide): We will begin rolling out mid-January 2026 and expect to complete by late January 2026.
Change Category:
XXXXXXX ... free basic plan only
Scope:
XXXXXXX ... free basic plan only
Release Phase:
General Availability, Preview
Created:
2025-11-04
updated:
2025-11-13
Public Preview Start Date
XXXXXXX ... free basic plan only
Task Type
XXXXXXX ... free basic plan only
Docu to Check
XXXXXXX ... free basic plan only
MS How does it affect me
XXXXXXX ... free basic plan only
MS Preperations
XXXXXXX ... free basic plan only
MS Urgency
XXXXXXX ... free basic plan only
MS workload name
XXXXXXX ... free basic plan only
linked item details
XXXXXXX ... free basic plan only
Pictures
XXXXXXX ... free basic plan only
summary for non-techies**
XXXXXXX ... free basic plan only
Direct effects for Operations**
Data Loss Prevention Policy Implementation
Without proper preparation, the implementation of the new DLP policy may lead to unintentional blocking of legitimate data usage in Copilot, causing disruptions in workflows and user frustration.
- roles: IT Admin, Data Security Admin
- references: https://learn.microsoft.com/purview/ai-m365-copilot, https://www.microsoft.com/microsoft-365/roadmap?filters=&searchterms=523212
Oversharing Risk Visibility
If the new visibility features are not properly configured, admins may miss critical oversharing incidents, leading to potential data breaches and compliance issues.
- roles: IT Admin, Compliance Officer
- references: https://learn.microsoft.com/purview/ai-m365-copilot, https://www.microsoft.com/microsoft-365/roadmap?filters=&searchterms=523212
User Experience with Copilot
Changes made without adequate user training or communication may result in confusion among users regarding the new DLP policies, negatively impacting their ability to use Copilot effectively.
- roles: End User, IT Support
- references: https://learn.microsoft.com/purview/ai-m365-copilot, https://www.microsoft.com/microsoft-365/roadmap?filters=&searchterms=523212
Configutation Options**
XXXXXXX ... paid membership only
Opportunities**
Enhanced Oversharing Risk Visibility
The introduction of visibility into oversharing risks allows IT admins to proactively monitor and address potential data leakage incidents. This feature can lead to improved compliance and data governance, enhancing the overall security posture of the organization.
- next-steps: Train IT staff on how to utilize the new visibility features effectively and integrate them into existing security protocols. Establish regular reviews of oversharing incidents to refine data handling practices.
- roles: IT Administrators, Compliance Officers, Data Security Managers
- references: https://learn.microsoft.com/purview/ai-m365-copilot, https://www.microsoft.com/microsoft-365/roadmap?filters=&searchterms=523212
Admin-Configurable DLP Policies
With the ability to create and manage Data Loss Prevention (DLP) policies directly from the Microsoft Admin Center, organizations can tailor their data protection strategies to specific needs. This customization can lead to enhanced user experience by allowing admins to configure protections that align with organizational policies.
- next-steps: Develop a framework for DLP policy creation and management. Engage with key stakeholders to identify sensitive data types that require protection and set up corresponding DLP policies.
- roles: IT Administrators, Data Security Managers, Compliance Officers
- references: https://learn.microsoft.com/entra/identity/role-based-access-control/permissions-reference#ai-administrator, https://learn.microsoft.com/purview/ai-m365-copilot
" target="_blank" rel="nofollow noopener noreferrer">https://learn.microsoft.com/purview/ai-m365-copilot
Improved Compliance Management
The integration of Copilot security controls with existing compliance frameworks enables organizations to better manage their data security obligations. This enhancement can streamline compliance processes and reduce the administrative burden on IT teams.
- next-steps: Review current compliance requirements and assess how the new features can be integrated into existing compliance workflows. Provide training to relevant staff on the updated compliance management processes.
- roles: Compliance Officers, IT Administrators, Legal Advisors
- references: https://learn.microsoft.com/purview/ai-m365-copilot, https://www.microsoft.com/microsoft-365/roadmap?filters=&searchterms=523212
Potentional Risks**
XXXXXXX ... paid membership only
Data Protection**
XXXXXXX ... paid membership only
IT Security**
XXXXXXX ... paid membership only
Hypothetical Work Council Statement**
XXXXXXX ... paid membership only
DPIA Draft**
XXXXXXX ... paid membership only
explanation for non-techies**
XXXXXXX ... free basic plan only
** AI generated content. This information must be reviewed before use.
a free basic plan is required to see more details. Sign up here
A cloudsocut.one plan is required to see all the changed details. If you are already a customer, choose login.
If you are new to cloudscout.one please choose a plan.
change history
| Date | Property | old | new |
| 2025-11-13 | MC MessageTagNames | New feature, Admin impact | Updated message, New feature, Admin impact |
| 2025-11-13 | MC Summary | Microsoft Purview introduces new Copilot security controls in Microsoft Admin Center, enabling admins to create DLP policies, monitor oversharing risks, and protect sensitive data in Copilot. Public preview starts November 2025; general availability in January 2026. Admin roles required for policy management and compliance. | Microsoft Purview introduces new Copilot security controls in Microsoft Admin Center, including a default DLP policy in simulation mode, visibility into oversharing risks, and admin-configurable protections. Rollout begins mid-November 2025 (preview) and mid-January 2026 (general availability). Entra admin roles are required for policy management. |
| 2025-11-13 | MC Last Updated | 11/04/2025 01:37:33 | 2025-11-13T01:35:07Z |
| 2025-11-13 | MC Messages | [Introduction]
To help organizations adopt Microsoft 365 Copilot securely, Microsoft Purview is introducing new capabilities in Microsoft Admin Center. These enhancements allow AI and IT admins to gain visibility into oversharing risks, remediate issues, and apply a new Data Loss Prevention (DLP) policy directly within Microsoft Admin Center. This update supports secure usage of Copilot by enabling protection of sensitive interactions. This message is associated with Microsoft 365 Roadmap ID 523212. [When this will happen:] Public Preview: We will begin rolling out mid-November 2025 and expect to complete by late November 2025. General Availability (Worldwide): We will begin rolling out mid-January 2026 and expect to complete by late January 2026. | Updated November 12, 2025: We have updated the content. Thank you for your patience.
[Introduction] To help organizations adopt Microsoft 365 Copilot securely, Microsoft Purview is introducing new capabilities in Microsoft Admin Center. These enhancements allow AI and IT admins to gain visibility into oversharing risks, remediate issues, and apply a new Data Loss Prevention (DLP) policy directly within Microsoft Admin Center. This update supports secure usage of Copilot by enabling protection of sensitive interactions. This message is associated with Microsoft 365 Roadmap ID 523212. [When this will happen:] Public Preview: We will begin rolling out mid-November 2025 and expect to complete by late November 2025. General Availability (Worldwide): We will begin rolling out mid-January 2026 and expect to complete by late January 2026. |
| 2025-11-13 | MC Title | Microsoft Purview | New Copilot Security Controls in Microsoft Admin Center | (Updated) Microsoft Purview | New Copilot Security Controls in Microsoft Admin Center |
| 2025-11-13 | MC How Affect | Who is affected: Admins managing Microsoft 365 Copilot and data security policies via Microsoft Admin Center or Purview portal.
What will happen: A new Security pivot will be added to the Microsoft Admin Center. Admins can create a policy to block specific sensitive information types from being used in Copilot. Visibility into oversharing risks and sensitive Copilot interactions will be available. | Who is affected: Admins managing Microsoft 365 Copilot and data security policies via Microsoft Admin Center or Purview portal.
What will happen: A new Security pivot will be added to the Microsoft Admin Center. By default, a Purview data loss prevention policy for Copilot will be available in simulation mode. Admins can configure this policy and enable it to block specific sensitive information types from being used in Copilot. You can learn more in Message Center Post 1181998. Visibility into oversharing risks and sensitive Copilot interactions will be available. |
Last updated 3 weeks ago ago
