check before: 2025-12-05
Product:
Purview, Purview Communication Compliance, Purview compliance portal, Purview Data Loss Prevention, SharePoint
Platform:
Online, US Instances, Web, World tenant
Status:
Launched
Change type:
New feature, Admin impact
Links:
(526797)
Details:
Summary:
Microsoft Purview Data Loss Prevention will support assigning SharePoint Online sites to administrative units, allowing DLP policies to apply only within those units. This feature, rolling out mid to late December 2025, requires no action before rollout and enables more granular policy management for admins.
Details:
[Introduction]
We're adding support for assigning Microsoft SharePoint Online sites to existing administrative units in Microsoft Purview Data Loss Prevention (DLP). When you assign a DLP policy for SharePoint to an administrative unit, the policy will apply only to sites within that unit. This enhancement helps organizations manage policies more granularly and align with administrative boundaries.
Learn more about Admin units: Administrative units in Microsoft Purview portal | Microsoft Learn
This message is associated with Microsoft 365 Roadmap ID 526797.
[When this will happen:]
General Availability (GCC, GCC High, DoD): Rollout begins mid-December 2025 and is expected to complete by late December 2025.
Change Category:
XXXXXXX ... free basic plan only
Scope:
XXXXXXX ... free basic plan only
Release Phase:
General Availability
Created:
2025-12-05
updated:
2025-12-05
Task Type
XXXXXXX ... free basic plan only
Docu to Check
XXXXXXX ... free basic plan only
MS How does it affect me
XXXXXXX ... free basic plan only
MS Preperations
XXXXXXX ... free basic plan only
MS Urgency
XXXXXXX ... free basic plan only
MS workload name
XXXXXXX ... free basic plan only
linked item details
XXXXXXX ... free basic plan only
Pictures
XXXXXXX ... free basic plan only
summary for non-techies**
XXXXXXX ... free basic plan only
Direct effects for Operations**
Granular Policy Management
Without preparation, admins may misconfigure DLP policies leading to unintended data exposure or compliance issues, as policies will apply only to specific administrative units.
- roles: DLP Admins, Compliance Officers
- references: https://learn.microsoft.com/purview/dlp-policy-reference?branch=main#support-for-adding-sharepoint-sites-to-administrative-units, https://learn.microsoft.com/purview/purview-admin-units
User Experience
If DLP policies are not properly scoped, end-users may face disruptions in accessing SharePoint sites or experience inconsistent data handling practices, affecting their workflow.
- roles: End Users, IT Support Staff
- references: https://www.microsoft.com/microsoft-365/roadmap?filters=&searchterms=526797, https://learn.microsoft.com/purview/purview-admin-units
Configutation Options**
XXXXXXX ... paid membership only
Data Protection**
XXXXXXX ... paid membership only
IT Security**
XXXXXXX ... paid membership only
explanation for non-techies**
Microsoft is introducing a new feature for its Purview Data Loss Prevention (DLP) tool that will allow organizations to assign SharePoint Online sites to specific administrative units. Think of administrative units like departments within a company. Just as you might have different rules or procedures for different departments, this feature allows IT administrators to apply specific data protection policies to different groups of SharePoint sites.
Imagine a large office building where each floor is occupied by a different department. Each department has its own security measures and access controls based on the nature of their work. Similarly, with this new feature, IT administrators can create tailored DLP policies that apply only to the SharePoint sites associated with a particular administrative unit, much like setting security protocols for each floor of the building.
This change will be automatically rolled out in December 2025, and administrators won't need to take any immediate action to enable it. The feature will be available by default, allowing for more precise management of data protection policies without disrupting existing workflows. It's like having a new tool in your toolbox that you can use when needed, without having to install or set it up first.
For those managing DLP policies, this means they can now focus on specific areas of the organization, ensuring that data protection measures are appropriately aligned with the needs and regulations of each unit. This can be particularly useful for organizations with diverse operations across different regions or departments, where compliance requirements might vary.
Overall, this update aims to provide greater flexibility and control over data protection in SharePoint Online, making it easier for organizations to safeguard their information according to their unique structure and needs.
** AI generated content. This information must be reviewed before use.
a free basic plan is required to see more details. Sign up here
A cloudsocut.one plan is required to see all the changed details. If you are already a customer, choose login.
If you are new to cloudscout.one please choose a plan.
Last updated 22 hours ago ago
