check before: 2025-12-01
Product:
Purview, Purview Communication Compliance, Purview compliance portal, Purview Data Loss Prevention
Platform:
Mac, Online, US Instances, Web, World tenant
Status:
Rolling out
Change type:
New feature, User impact, Admin impact
Links:
Details:
Summary:
Microsoft Purview Endpoint DLP will support scoping policies to specific macOS devices or device groups starting late December 2025. This allows admins more granular control without changing existing policies unless configured. Requires tenant version 101.25072 or higher. No compliance issues identified.
Details:
We're introducing support for deploying Endpoint Data Loss Prevention (DLP) policies to specific macOS devices or device groups. This enhancement provides more granular control for organizations managing data protection on Mac endpoints.
This message is associated with Microsoft 365 Roadmap ID 526792.
When this will happen:
General Availability (Worldwide): Rollout will begin in late December 2025 and is expected to complete by early January 2026.
Change Category:
XXXXXXX ... free basic plan only
Scope:
XXXXXXX ... free basic plan only
Release Phase:
General Availability
Created:
2025-12-18
updated:
2025-12-18
Task Type
XXXXXXX ... free basic plan only
Docu to Check
XXXXXXX ... free basic plan only
MS How does it affect me
XXXXXXX ... free basic plan only
MS Preperations
XXXXXXX ... free basic plan only
MS Urgency
XXXXXXX ... free basic plan only
MS workload name
XXXXXXX ... free basic plan only
linked item details
XXXXXXX ... free basic plan only
Pictures
XXXXXXX ... free basic plan only
summary for non-techies**
XXXXXXX ... free basic plan only
Direct effects for Operations**
Granular Control Implementation
Without proper preparation, admins may face challenges in implementing granular control over DLP policies, leading to potential data exposure risks on unprotected devices.
- roles: IT Admins, Security Officers
- references: https://www.microsoft.com/microsoft-365/roadmap?filters=&searchterms=526792
User Experience Disruption
If the change is implemented without communication, users may experience confusion or disruptions in data access and protection policies, affecting their workflow.
- roles: End Users, IT Support Staff
- references: https://www.microsoft.com/microsoft-365/roadmap?filters=&searchterms=526792
Configutation Options**
XXXXXXX ... paid membership only
Data Protection**
XXXXXXX ... paid membership only
IT Security**
XXXXXXX ... paid membership only
explanation for non-techies**
Microsoft is enhancing its Purview Endpoint Data Loss Prevention (DLP) capabilities by allowing organizations to apply policies specifically to certain macOS devices or groups of devices. This change is like being able to set different rules for different rooms in a house. Previously, you could only set rules for the people living in the house, but now you can decide that the living room (or a specific Mac device) has its own set of rules.
This update is scheduled to start rolling out in late December 2025 and should be completed by early January 2026. It's important for IT administrators who manage data protection on Mac devices, as it gives them more precise control over how data is handled on different machines. This is similar to having the ability to lock certain drawers in an office desk, ensuring that sensitive documents are only accessible in certain areas or by certain devices.
To take advantage of this new feature, organizations need to ensure their systems are updated to at least version 101.25072. If your organization is already using Purview Endpoint DLP, you won't need to change your existing policies unless you want to start using this new device-based scoping. Think of it as an optional upgrade that you can implement if it suits your needs.
For those responsible for security and compliance, it's a good idea to communicate this change to your teams and consider whether this new level of control could benefit your organization's data protection strategy. Since no compliance issues have been identified with this update, it should be straightforward to integrate into your existing practices.
In summary, this update provides more flexibility in managing data protection on Mac devices, allowing policies to be tailored not just to users, but also to the specific devices they use. This can help ensure that sensitive data is handled appropriately across different environments within your organization.
** AI generated content. This information must be reviewed before use.
a free basic plan is required to see more details. Sign up here
A cloudsocut.one plan is required to see all the changed details. If you are already a customer, choose login.
If you are new to cloudscout.one please choose a plan.
Last updated 2 weeks ago ago
