Summary
Details
Updated November 12, 2025: We have updated the content. Thank you for your patience.
[Introduction]
To help organizations adopt Microsoft 365 Copilot securely, Microsoft Purview is introducing new capabilities in Microsoft Admin Center. These enhancements allow AI and IT admins to gain visibility into oversharing risks, remediate issues, and apply a new Data Loss Prevention (DLP) policy directly within Microsoft Admin Center. This update supports secure usage of Copilot by enabling protection of sensitive interactions.
This message is associated with Microsoft 365 Roadmap ID 523212.
[When this will happen:]
- Public Preview: We will begin rolling out mid-November 2025 and expect to complete by late November 2025.
- General Availability (Worldwide): We will begin rolling out mid-January 2026 and expect to complete by late January 2026.
[How this affects your organization:]
- Who is affected: Admins managing Microsoft 365 Copilot and data security policies via Microsoft Admin Center or Purview portal.
- What will happen:
- A new Security pivot will be added to the Microsoft Admin Center.
- By default, a Purview data loss prevention policy for Copilot will be available in simulation mode. Admins can configure this policy and enable it to block specific sensitive information types from being used in Copilot. You can learn more in Message Center Post 1181998.
- Visibility into oversharing risks and sensitive Copilot interactions will be available.
[What you can do to prepare:]
- Review how Copilot is secure by default and assess if additional protections are needed.
- Once the feature is released:
- Use an Entra AI Admin or Entra Global Admin role to create a policy to block sensitive information types in Microsoft Admin Center.
- Collaborate with your data security admin to apply additional protections and ensure compliance with AI regulations.
- These actions can also be performed in the Purview portal. Learn more: Use Microsoft Purview to manage data security & compliance for Microsoft 365 Copilot & Microsoft 365 Copilot Chat.
[Compliance considerations:]
| Compliance Area | Explanation |
|---|---|
| Alters how existing customer data is processed | Sensitive information types can be blocked from Copilot interactions, modifying how data is accessed and used. |
| Modifies Purview capabilities | Adds ability to create DLP policy for Copilot from the Microsoft Admin Center. |
| Alters admin monitoring/reporting | Admins gain visibility into oversharing risks and Copilot data usage. |
| Includes admin control via Entra ID | Requires Entra AI Admin or Global Admin role to configure policies. |
Related Roadmap Items
Change History
[Introduction]
To help organizations adopt Microsoft 365 Copilot securely, Microsoft Purview is introducing new capabilities in Microsoft Admin Center. These enhancements allow AI and IT admins to gain visibility into oversharing risks, remediate issues, and apply a new Data Loss Prevention (DLP) policy directly within Microsoft Admin Center. This update supports secure usage of Copilot by enabling protection of sensitive interactions.
This message is associated with Microsoft 365 Roadmap ID 523212.
[When this will happen:]
- Public Preview: We will begin rolling out mid-November 2025 and expect to complete by late November 2025.
- General Availability (Worldwide): We will begin rolling out mid-January 2026 and expect to complete by late January 2026.
[How this affects your organization:]
- Who is affected: Admins managing Microsoft 365 Copilot and data security policies via Microsoft Admin Center or Purview portal.
- What will happen:
- A new Security pivot will be added to the Microsoft Admin Center.
- Admins can create a policy to block specific sensitive information types from being used in Copilot.
- Visibility into oversharing risks and sensitive Copilot interactions will be available.
[What you can do to prepare:]
- Review how Copilot is secure by default and assess if additional protections are needed.
- Once the feature is released:
- Use an Entra AI Admin or Entra Global Admin role to create a policy to block sensitive information types in Microsoft Admin Center.
- Collaborate with your data security admin to apply additional protections and ensure compliance with AI regulations.
- These actions can also be performed in the Purview portal. Learn more: Use Microsoft Purview to manage data security & compliance for Microsoft 365 Copilot & Microsoft 365 Copilot Chat.
[Compliance considerations:]
| Compliance Area | Explanation |
|---|---|
| Alters how existing customer data is processed | Sensitive information types can be blocked from Copilot interactions, modifying how data is accessed and used. |
| Modifies Purview capabilities | Adds ability to create DLP policy for Copilot from the Microsoft Admin Center. |
| Alters admin monitoring/reporting | Admins gain visibility into oversharing risks and Copilot data usage. |
| Includes admin control via Entra ID | Requires Entra AI Admin or Global Admin role to configure policies. |
Updated November 12, 2025: We have updated the content. Thank you for your patience.
[Introduction]
To help organizations adopt Microsoft 365 Copilot securely, Microsoft Purview is introducing new capabilities in Microsoft Admin Center. These enhancements allow AI and IT admins to gain visibility into oversharing risks, remediate issues, and apply a new Data Loss Prevention (DLP) policy directly within Microsoft Admin Center. This update supports secure usage of Copilot by enabling protection of sensitive interactions.
This message is associated with Microsoft 365 Roadmap ID 523212.
[When this will happen:]
- Public Preview: We will begin rolling out mid-November 2025 and expect to complete by late November 2025.
- General Availability (Worldwide): We will begin rolling out mid-January 2026 and expect to complete by late January 2026.
[How this affects your organization:]
- Who is affected: Admins managing Microsoft 365 Copilot and data security policies via Microsoft Admin Center or Purview portal.
- What will happen:
- A new Security pivot will be added to the Microsoft Admin Center.
- By default, a Purview data loss prevention policy for Copilot will be available in simulation mode. Admins can configure this policy and enable it to block specific sensitive information types from being used in Copilot. You can learn more in Message Center Post 1181998.
- Visibility into oversharing risks and sensitive Copilot interactions will be available.
[What you can do to prepare:]
- Review how Copilot is secure by default and assess if additional protections are needed.
- Once the feature is released:
- Use an Entra AI Admin or Entra Global Admin role to create a policy to block sensitive information types in Microsoft Admin Center.
- Collaborate with your data security admin to apply additional protections and ensure compliance with AI regulations.
- These actions can also be performed in the Purview portal. Learn more: Use Microsoft Purview to manage data security & compliance for Microsoft 365 Copilot & Microsoft 365 Copilot Chat.
[Compliance considerations:]
| Compliance Area | Explanation |
|---|---|
| Alters how existing customer data is processed | Sensitive information types can be blocked from Copilot interactions, modifying how data is accessed and used. |
| Modifies Purview capabilities | Adds ability to create DLP policy for Copilot from the Microsoft Admin Center. |
| Alters admin monitoring/reporting | Admins gain visibility into oversharing risks and Copilot data usage. |
| Includes admin control via Entra ID | Requires Entra AI Admin or Global Admin role to configure policies. |
Never Miss a Microsoft 365 Update
Join thousands of IT professionals who rely on DeltaPulse for real-time Microsoft 365 change intelligence, automated notifications, and community insights.