check before: 2025-12-01
Product:
Copilot, Purview, Purview Communication Compliance, Purview compliance portal, Purview Information Protection, Purview Insider Risk Management
Platform:
Online, Web, World tenant
Status:
In development
Change type:
Admin impact, New feature, Updated message, User impact
Links:
Details:
Summary:
Microsoft Purview Insider Risk Management now extends to AI agents, enabling detection and remediation of risky agent activities. Features include integration with Copilot Studio and Azure AI Foundry, risky AI usage policies, and agent workflow governance. Public preview starts December 2025; general availability in May 2026.
Details:
Updated March 9, 2026: We have updated the timeline. Thank you for your patience.
[Introduction]
As AI agents become deeply embedded in enterprise ecosystems, they are evolving beyond simple tools or workflows into an autonomous digital workforce. These agents can interpret user intent, access and manipulate enterprise data, execute actions on behalf of users, and even make real-time decisions. In many ways, they operate like human insiders only with machine-speed data processing capabilities.
To govern and protect these agents effectively, organizations require visibility into their activities, contextual understanding of their actions, and the ability to flag or block risky behavior. Now, Insider Risk Management can be extended to detect and remediate potentially risky agent activities.
Features:
Copilot Studio & Azure AI Foundry Integration: Detect potentially risky activities of agents hosted on Copilot Studio, Azure AI Foundry, and Agent 365 platforms
Risky AI Usage Policies: Define and enforce policies specific to AI agents accessing sensitive data or performing high-risk actions.
IRM for Agent Users: Extend IRM in Purview to govern agent-driven workflows and protect organizational data.
This message is associated with Microsoft 365 Roadmap ID 516032.
[When this will happen:]
Public Preview: We will begin rolling out early December 2025 and expect to complete by mid-January 2026.
General Availability (Worldwide): We will begin rolling out early May 2026 (previously late March) and expect to complete by late May 2026 (previously late April).
Change Category:
XXXXXXX ... free basic plan only
Scope:
XXXXXXX ... free basic plan only
Release Phase:
General Availability, Preview
Created:
2025-12-20
updated:
2026-03-17
Public Preview Start Date
XXXXXXX ... free basic plan only
Task Type
XXXXXXX ... free basic plan only
Docu to Check
XXXXXXX ... free basic plan only
MS How does it affect me
XXXXXXX ... free basic plan only
MS Preperations
XXXXXXX ... free basic plan only
MS Urgency
XXXXXXX ... free basic plan only
MS workload name
XXXXXXX ... free basic plan only
linked item details
XXXXXXX ... free basic plan only
Pictures
XXXXXXX ... free basic plan only
summary for non-techies**
XXXXXXX ... free basic plan only
Direct effects for Operations**
Risk of Data Breaches
Without proper preparation, the deployment of the new Insider Risk Management features may lead to unmonitored AI agent activities, increasing the risk of data breaches due to unauthorized access or misuse of sensitive information.
- roles: Data Protection Officer, IT Security Manager
- references: https://www.microsoft.com/microsoft-365/roadmap?filters=&searchterms=516032, https://learn.microsoft.com/purview/insider-risk-management-adaptive-protection
User Experience Disruption
The automatic deployment of the Risky Agents policy may disrupt user workflows if agents are flagged or blocked without prior notice, leading to frustration and decreased productivity among users relying on these AI agents.
- roles: End Users, Business Analysts
- references: https://learn.microsoft.com/purview/insider-risk-management-policies, https://learn.microsoft.com/purview/insider-risk-management-policy-templates
Compliance Risks
Failure to adequately prepare for the new compliance requirements associated with AI agents may result in non-compliance with data protection regulations, leading to potential legal and financial repercussions for the organization.
- roles: Compliance Officer, Legal Advisor
- references: https://learn.microsoft.com/purview/insider-risk-management-policies, https://learn.microsoft.com/purview/insider-risk-management-adaptive-protection
Configutation Options**
XXXXXXX ... paid membership only
Opportunities**
XXXXXXX ... free basic plan only
Potentional Risks**
XXXXXXX ... paid membership only
Data Protection**
XXXXXXX ... paid membership only
IT Security**
XXXXXXX ... paid membership only
Hypothetical Work Council Statement**
XXXXXXX ... paid membership only
DPIA Draft**
XXXXXXX ... paid membership only
explanation for non-techies**
XXXXXXX ... free basic plan only
** AI generated content. This information must be reviewed before use.
a free basic plan is required to see more details. Sign up here
A cloudsocut.one plan is required to see all the changed details. If you are already a customer, choose login.
If you are new to cloudscout.one please choose a plan.
change history
| Date | Property | old | new |
| 2026-03-17 | MC Last Updated | 01/30/2026 18:12:40 | 2026-03-09T21:09:55Z |
| 2026-03-17 | MC Messages | Updated January 30, 2026: We have updated the timeline. Thank you for your patience.
[Introduction] As AI agents become deeply embedded in enterprise ecosystems, they are evolving beyond simple tools or workflows into an autonomous digital workforce. These agents can interpret user intent, access and manipulate enterprise data, execute actions on behalf of users, and even make real-time decisions. In many ways, they operate like human insiders only with machine-speed data processing capabilities. To govern and protect these agents effectively, organizations require visibility into their activities, contextual understanding of their actions, and the ability to flag or block risky behavior. Now, Insider Risk Management can be extended to detect and remediate potentially risky agent activities. Features: Copilot Studio & Azure AI Foundry Integration: Detect potentially risky activities of agents hosted on Copilot Studio, Azure AI Foundry, and Agent 365 platforms Risky AI Usage Policies: Define and enforce policies specific to AI agents accessing sensitive data or performing high-risk actions. IRM for Agent Users: Extend IRM in Purview to govern agent-driven workflows and protect organizational data. This message is associated with Microsoft 365 Roadmap ID 516032. [When this will happen:] Public Preview: We will begin rolling out early December 2025 and expect to complete by mid-January 2026. General Availability (Worldwide): We will begin rolling out late March 2026 (previously early December) and expect to complete by late April 2026 (previously late December). | Updated March 9, 2026: We have updated the timeline. Thank you for your patience.
[Introduction] As AI agents become deeply embedded in enterprise ecosystems, they are evolving beyond simple tools or workflows into an autonomous digital workforce. These agents can interpret user intent, access and manipulate enterprise data, execute actions on behalf of users, and even make real-time decisions. In many ways, they operate like human insiders only with machine-speed data processing capabilities. To govern and protect these agents effectively, organizations require visibility into their activities, contextual understanding of their actions, and the ability to flag or block risky behavior. Now, Insider Risk Management can be extended to detect and remediate potentially risky agent activities. Features: Copilot Studio & Azure AI Foundry Integration: Detect potentially risky activities of agents hosted on Copilot Studio, Azure AI Foundry, and Agent 365 platforms Risky AI Usage Policies: Define and enforce policies specific to AI agents accessing sensitive data or performing high-risk actions. IRM for Agent Users: Extend IRM in Purview to govern agent-driven workflows and protect organizational data. This message is associated with Microsoft 365 Roadmap ID 516032. [When this will happen:] Public Preview: We will begin rolling out early December 2025 and expect to complete by mid-January 2026. General Availability (Worldwide): We will begin rolling out early May 2026 (previously late March) and expect to complete by late May 2026 (previously late April). |
| 2026-03-17 | MC End Time | 06/01/2026 10:00:00 | 2026-06-26T10:00:00Z |
| 2026-03-17 | MC Summary | Microsoft Purview Insider Risk Management now extends to AI agents, detecting and managing risky activities on Copilot Studio, Azure AI Foundry, and Agent 365. Features include AI-specific policies and risk profiling. Public preview starts December 2025; general availability by April 2026. Organizations can review, tune, or disable these policies. | Microsoft Purview Insider Risk Management now extends to AI agents, enabling detection and remediation of risky agent activities. Features include integration with Copilot Studio and Azure AI Foundry, risky AI usage policies, and agent workflow governance. Public preview starts December 2025; general availability in May 2026. |
| 2026-01-31 | MC MessageTagNames | New feature, User impact, Admin impact | Updated message, New feature, User impact, Admin impact |
| 2026-01-31 | MC Summary | Microsoft Purview Insider Risk Management will extend to detect and manage risky AI agent activities in enterprise environments. Features include integration with Copilot Studio and Azure AI Foundry, AI-specific risk policies, and governance of agent workflows. Public preview starts December 2025; general availability by December 2026. | Microsoft Purview Insider Risk Management now extends to AI agents, detecting and managing risky activities on Copilot Studio, Azure AI Foundry, and Agent 365. Features include AI-specific policies and risk profiling. Public preview starts December 2025; general availability by April 2026. Organizations can review, tune, or disable these policies. |
| 2026-01-31 | MC Last Updated | 01/29/2026 18:26:45 | 2026-01-30T18:12:40Z |
| 2026-01-31 | MC Messages | [Introduction]
As AI agents become deeply embedded in enterprise ecosystems, they are evolving beyond simple tools or workflows into an autonomous digital workforce. These agents can interpret user intent, access and manipulate enterprise data, execute actions on behalf of users, and even make real-time decisions. In many ways, they operate like human insiders only with machine-speed data processing capabilities. To govern and protect these agents effectively, organizations require visibility into their activities, contextual understanding of their actions, and the ability to flag or block risky behavior. Now, Insider Risk Management can be extended to detect and remediate potentially risky agent activities. Features: Copilot Studio & Azure AI Foundry Integration: Detect potentially risky activities of agents hosted on Copilot Studio, Azure AI Foundry, and Agent 365 platforms Risky AI Usage Policies: Define and enforce policies specific to AI agents accessing sensitive data or performing high-risk actions. IRM for Agent Users: Extend IRM in Purview to govern agent-driven workflows and protect organizational data. This message is associated with Microsoft 365 Roadmap ID 516032. [When this will happen:] Public Preview: We will begin rolling out early December 2025 and expect to complete by mid-January 2026. General Availability (Worldwide): We will begin rolling out early December 2026 and expect to complete by late December 2026. | Updated January 30, 2026: We have updated the timeline. Thank you for your patience.
[Introduction] As AI agents become deeply embedded in enterprise ecosystems, they are evolving beyond simple tools or workflows into an autonomous digital workforce. These agents can interpret user intent, access and manipulate enterprise data, execute actions on behalf of users, and even make real-time decisions. In many ways, they operate like human insiders only with machine-speed data processing capabilities. To govern and protect these agents effectively, organizations require visibility into their activities, contextual understanding of their actions, and the ability to flag or block risky behavior. Now, Insider Risk Management can be extended to detect and remediate potentially risky agent activities. Features: Copilot Studio & Azure AI Foundry Integration: Detect potentially risky activities of agents hosted on Copilot Studio, Azure AI Foundry, and Agent 365 platforms Risky AI Usage Policies: Define and enforce policies specific to AI agents accessing sensitive data or performing high-risk actions. IRM for Agent Users: Extend IRM in Purview to govern agent-driven workflows and protect organizational data. This message is associated with Microsoft 365 Roadmap ID 516032. [When this will happen:] Public Preview: We will begin rolling out early December 2025 and expect to complete by mid-January 2026. General Availability (Worldwide): We will begin rolling out late March 2026 (previously early December) and expect to complete by late April 2026 (previously late December). |
| 2026-01-31 | MC Title | Microsoft Purview | Insider risk management- Insider risk management for risky agents | (Updated) Microsoft Purview | Insider risk management- Insider risk management for risky agents |
| 2026-01-31 | MC End Time | 01/31/2027 09:00:00 | 2026-06-01T10:00:00Z |
| 2026-01-30 | MC Last Updated | 12/20/2025 00:42:54 | 2026-01-29T18:26:45Z |
Last updated 2 months ago ago
