check before: 2025-12-01
Product:
Copilot, Purview, Purview Communication Compliance, Purview compliance portal, Purview Information Protection, Purview Insider Risk Management
Platform:
Online, Web, World tenant
Status:
In development
Change type:
Admin impact, New feature, Updated message, User impact
Links:
Details:
Summary:
Microsoft Purview Insider Risk Management now extends to AI agents, detecting and managing risky activities on Copilot Studio, Azure AI Foundry, and Agent 365. Features include AI-specific policies and risk profiling. Public preview starts December 2025; general availability by April 2026. Organizations can review, tune, or disable these policies.
Details:
Updated January 30, 2026: We have updated the timeline. Thank you for your patience.
[Introduction]
As AI agents become deeply embedded in enterprise ecosystems, they are evolving beyond simple tools or workflows into an autonomous digital workforce. These agents can interpret user intent, access and manipulate enterprise data, execute actions on behalf of users, and even make real-time decisions. In many ways, they operate like human insiders only with machine-speed data processing capabilities.
To govern and protect these agents effectively, organizations require visibility into their activities, contextual understanding of their actions, and the ability to flag or block risky behavior. Now, Insider Risk Management can be extended to detect and remediate potentially risky agent activities.
Features:
Copilot Studio & Azure AI Foundry Integration: Detect potentially risky activities of agents hosted on Copilot Studio, Azure AI Foundry, and Agent 365 platforms
Risky AI Usage Policies: Define and enforce policies specific to AI agents accessing sensitive data or performing high-risk actions.
IRM for Agent Users: Extend IRM in Purview to govern agent-driven workflows and protect organizational data.
This message is associated with Microsoft 365 Roadmap ID 516032.
[When this will happen:]
Public Preview: We will begin rolling out early December 2025 and expect to complete by mid-January 2026.
General Availability (Worldwide): We will begin rolling out late March 2026 (previously early December) and expect to complete by late April 2026 (previously late December).
Change Category:
XXXXXXX ... free basic plan only
Scope:
XXXXXXX ... free basic plan only
Release Phase:
General Availability, Preview
Created:
2025-12-20
updated:
2026-01-31
Public Preview Start Date
XXXXXXX ... free basic plan only
Task Type
XXXXXXX ... free basic plan only
Docu to Check
XXXXXXX ... free basic plan only
MS How does it affect me
XXXXXXX ... free basic plan only
MS Preperations
XXXXXXX ... free basic plan only
MS Urgency
XXXXXXX ... free basic plan only
MS workload name
XXXXXXX ... free basic plan only
linked item details
XXXXXXX ... free basic plan only
Pictures
XXXXXXX ... free basic plan only
summary for non-techies**
Microsoft Purview's Insider Risk Management now includes features to monitor AI agents, allowing organizations to set specific rules and policies to ensure these agents operate safely and do not access sensitive information or perform risky actions without oversight.
Direct effects for Operations**
Risk of Data Breaches
Without proper preparation, the automatic deployment of Risky Agents policy may lead to false positives, causing unnecessary alerts and potential data breaches if risky activities are not accurately identified and managed.
- roles: IT Security Manager, Compliance Officer
- references: https://learn.microsoft.com/purview/insider-risk-management-adaptive-protection" target="_blank" rel="nofollow noopener noreferrer">https://learn.microsoft.com/purview/insider-risk-management-adaptive-protection, https://learn.microsoft.com/purview/insider-risk-management-policies
" target="_blank" rel="nofollow noopener noreferrer">https://learn.microsoft.com/purview/insider-risk-management-policies
User Experience Disruption
The introduction of AI-specific policies without prior training or communication may confuse users, leading to frustration and decreased productivity as they navigate unexpected alerts or restrictions on agent activities.
- roles: End Users, IT Support Staff
- references: https://www.microsoft.com/microsoft-365/roadmap?filters=&searchterms=516032, https://learn.microsoft.com/purview/insider-risk-management-policy-templates
Increased Operational Overhead
If the Risky Agents policy is deployed without preparation, IT teams may face increased workload managing alerts and tuning policies, diverting resources from other critical IT operations.
- roles: IT Operations Manager, System Administrator
- references: https://learn.microsoft.com/purview/insider-risk-management-policies, https://learn.microsoft.com/purview/insider-risk-management-adaptive-protection" target="_blank" rel="nofollow noopener noreferrer">https://learn.microsoft.com/purview/insider-risk-management-adaptive-protection
Configutation Options**
XXXXXXX ... paid membership only
Opportunities**
XXXXXXX ... free basic plan only
Potentional Risks**
XXXXXXX ... paid membership only
Data Protection**
XXXXXXX ... paid membership only
IT Security**
XXXXXXX ... paid membership only
Hypothetical Work Council Statement**
XXXXXXX ... paid membership only
DPIA Draft**
XXXXXXX ... paid membership only
explanation for non-techies**
XXXXXXX ... free basic plan only
** AI generated content. This information must be reviewed before use.
a free basic plan is required to see more details. Sign up here
A cloudsocut.one plan is required to see all the changed details. If you are already a customer, choose login.
If you are new to cloudscout.one please choose a plan.
change history
| Date | Property | old | new |
| 2026-01-31 | MC MessageTagNames | New feature, User impact, Admin impact | Updated message, New feature, User impact, Admin impact |
| 2026-01-31 | MC Summary | Microsoft Purview Insider Risk Management will extend to detect and manage risky AI agent activities in enterprise environments. Features include integration with Copilot Studio and Azure AI Foundry, AI-specific risk policies, and governance of agent workflows. Public preview starts December 2025; general availability by December 2026. | Microsoft Purview Insider Risk Management now extends to AI agents, detecting and managing risky activities on Copilot Studio, Azure AI Foundry, and Agent 365. Features include AI-specific policies and risk profiling. Public preview starts December 2025; general availability by April 2026. Organizations can review, tune, or disable these policies. |
| 2026-01-31 | MC Last Updated | 01/29/2026 18:26:45 | 2026-01-30T18:12:40Z |
| 2026-01-31 | MC Messages | [Introduction]
As AI agents become deeply embedded in enterprise ecosystems, they are evolving beyond simple tools or workflows into an autonomous digital workforce. These agents can interpret user intent, access and manipulate enterprise data, execute actions on behalf of users, and even make real-time decisions. In many ways, they operate like human insiders only with machine-speed data processing capabilities. To govern and protect these agents effectively, organizations require visibility into their activities, contextual understanding of their actions, and the ability to flag or block risky behavior. Now, Insider Risk Management can be extended to detect and remediate potentially risky agent activities. Features: Copilot Studio & Azure AI Foundry Integration: Detect potentially risky activities of agents hosted on Copilot Studio, Azure AI Foundry, and Agent 365 platforms Risky AI Usage Policies: Define and enforce policies specific to AI agents accessing sensitive data or performing high-risk actions. IRM for Agent Users: Extend IRM in Purview to govern agent-driven workflows and protect organizational data. This message is associated with Microsoft 365 Roadmap ID 516032. [When this will happen:] Public Preview: We will begin rolling out early December 2025 and expect to complete by mid-January 2026. General Availability (Worldwide): We will begin rolling out early December 2026 and expect to complete by late December 2026. | Updated January 30, 2026: We have updated the timeline. Thank you for your patience.
[Introduction] As AI agents become deeply embedded in enterprise ecosystems, they are evolving beyond simple tools or workflows into an autonomous digital workforce. These agents can interpret user intent, access and manipulate enterprise data, execute actions on behalf of users, and even make real-time decisions. In many ways, they operate like human insiders only with machine-speed data processing capabilities. To govern and protect these agents effectively, organizations require visibility into their activities, contextual understanding of their actions, and the ability to flag or block risky behavior. Now, Insider Risk Management can be extended to detect and remediate potentially risky agent activities. Features: Copilot Studio & Azure AI Foundry Integration: Detect potentially risky activities of agents hosted on Copilot Studio, Azure AI Foundry, and Agent 365 platforms Risky AI Usage Policies: Define and enforce policies specific to AI agents accessing sensitive data or performing high-risk actions. IRM for Agent Users: Extend IRM in Purview to govern agent-driven workflows and protect organizational data. This message is associated with Microsoft 365 Roadmap ID 516032. [When this will happen:] Public Preview: We will begin rolling out early December 2025 and expect to complete by mid-January 2026. General Availability (Worldwide): We will begin rolling out late March 2026 (previously early December) and expect to complete by late April 2026 (previously late December). |
| 2026-01-31 | MC Title | Microsoft Purview | Insider risk management- Insider risk management for risky agents | (Updated) Microsoft Purview | Insider risk management- Insider risk management for risky agents |
| 2026-01-31 | MC End Time | 01/31/2027 09:00:00 | 2026-06-01T10:00:00Z |
| 2026-01-30 | MC Last Updated | 12/20/2025 00:42:54 | 2026-01-29T18:26:45Z |
Last updated 3 weeks ago ago
