What's new in Microsoft Purview

Whether it's adding new solutions, updating existing features based on your feedback, or rolling out fresh and updated documentation, Microsoft Purview helps you stay on top of the ever-changing data governance, data security, and risk and compliance areas. Take a look at the following information to see what's new in Microsoft Purview.

What's planned for Microsoft Purview

Microsoft Purview continues to add new solutions and features to help with data governance, data security, and risk and compliance in your organization. Check out the following roadmap sites to learn more about what's planned for Microsoft Purview:

• Roadmap for data governance solutions.
• Roadmap for data security and risk and compliance solutions.

December 2025

This month includes information about releases and updates that were announced and covered at Microsoft Ignite.

Data Governance

• General availability (GA): Microsoft Purview Unified Catalog metadata self-service analytics capability is now generally available.
• Updated: Multiregion configuration is available to store data quality error records locally where your data is located. Organizations can configure multiple location folders to store data quality error records in alignment with data residency compliance requirements.
• In preview: Get started with virtual network support for self-service analytics metadata storage, now in preview.

Insider Risk Management

• General availability (GA): Support for data risk graphs in Insider Risk Management. Data risk graph in Insider Risk Management uniquely visualizes correlations between impacted data, users, and their activities. It provides critical context to guide alert mitigation and next steps.
• General availability (GA): A Microsoft Security Copilot Agent for Insider Risk Management. The Triage Agent in Insider Risk Management provides an agent-managed alert queue where the alerts about the highest risk activities are identified and prioritized on the Triage Agent dashboard. For more information, see Security Copilot Agents in Microsoft Purview Overview (preview).
• In preview: The Triage Agent in Insider Risk Management supports feedback on incorrect alert categorizations.

November 2025

This month includes information about releases and updates that were announced and covered at Microsoft Ignite.

Data Governance

• General availability (GA): Unified Catalog is now generally available in the West Central US region; see all supported regions.
• Updated: Sensitivity labels can now be applied to 11 more Data Map data sources: Azure Cosmos DB for SQL API, Azure Data Explorer, Azure Database for MySQL, Azure Database for PostgreSQL, Azure Databricks Unity Catalog, Azure SQL Managed Instance, Azure Synapse Analytics (Workspace), Snowflake, SQL Server, Amazon S3, Microsoft Dataverse.
• In preview: Create workflows within Unified Catalog to automate the process of granting access to data products, and for publishing data products and glossary terms.

Data Loss Prevention

• Updated: Get started with Endpoint Data Loss Prevention Just-In-Time file protection.
• In preview: Get started with data loss prevention protections for Recall helps protect against sensitive content being included in Recall snapshots on Copilot+ PCs.
• In preview: For Ignite Block sensitive information types in prompts provides the ability to block specific sensitive information types from being used in prompts to Microsoft 365 Copilot and Copilot Chat. When a user attempts to use sensitive information types that are blocked by the DLP policy, they will receive a notification informing them that the prompt cannot be completed.
• General availability (GA): For Ignite Block files and emails with sensitivity labels from being used in response summaries is released to general availability.
• In preview: Use Network Data Security to help prevent sharing sensitive information with unmanaged AI. You can enforce DLP protections on network traffic for Microsoft Entra GSA Internet Access to help prevent users from sharing sensitive information with unmanaged AI apps (files only).
• general availability: Learn about Microsoft Purview Network Data Security for third-party SASE network security solutions.

Data Security Posture Management for AI

• In preview: To help you more confidently adopt Microsoft 365 Copilot, custom data risk assessments now include item-level scanning with remediation for potentially overshared files in SharePoint.

Data Security Investigations (preview)

• In preview: Use Search with AI (preview) to ask natural language questions or enter keywords with a specific focus to narrow down items for review. AI Search supplements vector search and extends AI capabilities when analyzing your data.

Data Lifecycle Management

• General availability (GA): Priority cleanup support for SharePoint and OneDrive.

Insider Risk Management

• In preview: Pay-as-you-go usage reports provide transparency and enable more accurate budget planning and policy tuning.
• In preview: Risky Agents policy template is available in Insider Risk Management to detect activities of agents hosted on Microsoft Copilot Studio and Microsoft Foundry.

Purview

• In preview: Manage pay-as-you-go and per-user licensing usage - TheUsage center lets you see your pay-as-you-go billing usage for Microsoft Purview capabilities, as well as your per-user licensing usage. You can drill down to specific policies, workloads and features and toggle pay-as-you-go on/pause. The Premium usage report shows you the number of seats that are protected by Microsoft Purview policies but unlicenses and licensed but unprotected empowering you to optimize your licensing usage.

Purview Reports

• In preview: Microsoft Purview Posture Reports overview has added three new posture reports in Microsoft Purview Information Protection, three new posture reports in Microsoft Purview Data Loss Prevention.

Security Copilot Agents in Purview

• New: Get started with the Microsoft Purview Triage Agent in Data Loss Prevention (preview) to include new configuration flow and feedback functionality as a stand alone article.
• New: Get started with the Microsoft Purview Triage Agent in Insider Risk Management (preview) as a stand alone article.

Sensitivity labels

• New: RAG-based Foundry apps and agents built with AI search as the knowledge retrieval service can honor sensitivity labels the same way as Microsoft 365 Copilot does. For encrypted items, a user must have the EXTRACT usage right, as well as VIEW, for these items to be returned in search results.
• General availability (GA): SharePoint document libraries can be configured for a sensitivity label to extend permissions to downloaded documents, and protect files from being copied or moved. For more information, see Configure SharePoint with a sensitivity label to extend permissions to downloaded documents. Microsoft 365 Copilot can access unopened files that are labeled with this configuration.

October 2025

Data Governance

• In preview: Unified Catalog API for general availability (GA) features in Unified Catalog.
• General availability (GA): Data quality error record publishing to your cloud storage is now generally available in all supported Azure regions. Data engineers, data quality stewards, and analysts can review and correct data, as well as monitor continuous improvements by creating dashboards with Unified Catalog metadata and Data quality error records for their data governance and data quality teams. This feature helps Microsoft Purview Unified Catalog users not only measure and monitor data quality, but also improve it by enabling them to correct data quality error records and handle rule exceptions.
• In preview: A new table named Critical Data Column is added to self-service analytics. Users will able to report glossary terms or any other concepts associated to data asset column using the Critical Data Column and Relationship tables.

Data Lifecycle Management

• New: Rolling out, migrating the retention of Teams private channel messages from the Teams private channel messages location to the Teams channel messages location in a retention policy. In line with the Microsoft Teams change that enhances private cannels in Microsoft Teams to unlock their full potential, private channel messages will be stored in group mailboxes rather than user mailboxes. When your tenant is migrated, select the Teams channel messages location in the retention policy configuration to retain or delete these messages.

Data Loss Prevention

• In preview: User and rule based alert aggregation provides greater flexibility and control over how DLP alerts are grouped and presented. Alerts can be generated per event, or per user, or single aggregate alerts for multiple users and multiple events, or based on the volume of data. The generation of alerts on a user + rule , aggregated over multiple time windows helps reduce alert noise and allows you to view your alert data in new ways.

Data Security Investigations (preview)

• New: Search relevance scores are now available to help you determine the connection strength between your vector search and the results.
• New: Use the Additional context for AI (preview) option when creating a new investigation (or to existing investigations) to help focus the categorization and risk examination results to specific area or issues.

eDiscovery

• Consolidated document metadata reference: New updates and consolidation of all document metadata fields supported by eDiscovery into a single reference article. Documents support for document fields included in the items.csv file for exports from direct search, when adding search results to a review set, and when exporting items from a review set.
• Use Microsoft Purview APIs for eDiscovery: New article that provides guidance on how to configure the required prerequisites to enable access to the Microsoft Purview APIs for eDiscovery. This guidance is based on using app-only access to the APIs, with either a client secret or a self-signed certificate to authenticate the requests.

Insider Risk Management

• In preview: Content explorer has new filtering and view management tools.

Sensitivity labels

• New: Tenants that are created beginning October 1, 2025 will automatically use the new label scheme that previously, was available only to customers who migrated their parent sensitivity labels to label groups. If your tenant has the new label scheme, you see a green message bar on the Sensitivity labels page that confirms your tenant is successfully migrated to the modern label scheme, which provides more flexibility in organization and reduced complexity.
• General availability (GA): Support for cross-cloud access to encrypted documents with Microsoft Entra configuration. As a result, users who are part of an organization in another cloud environment can open Word, Excel, and PowerPoint files that are encrypted by your organization. For example, these users might be in Microsoft Azure Government, or Microsoft Azure operated by 21Vianet.

September 2025

Data Governance

• Updated: When you add owners to glossary terms in Unified Catalog, they're automatically added to the Contacts section on the term's details page.
• Updated: Learn about upcoming authentication changes affecting users of the Snowflake connector for Microsoft Purview Data Map.
• Updated: In self-serve analytics and insights (preview):
  • Critical Data Element (CDE) column IDs are available. You can query CDE display name and column ID from the tables CriticalDataElement, DataAssetColumnCriticalDataElementAssignment, and DataAssetColumn tables.
  • Parent Business Domain ID is available. You can create a report on governance domain hierarchy from self-serve analytics metadata published into Fabric OneLake and Azure Data Lake Storage Gen2.
  • Data quality job run start time and end time data are now available for self-serve analytics in Fabric OneLake and Azure Data Lake Storage Gen2.

Data Lifecycle Management

• In preview: Rolling out, updates to priority cleanup that include:
  • New support for SharePoint and OneDrive, with the main scenarios being the ability to delete Teams meeting recordings and transcripts (typically large files that are stale after 1-3 months) and delete items retained in a user's OneDrive Preservation Hold Library after a user has left the organization. In both cases, priority cleanup lets you override the first principle of retention that the longest retention period takes precedence, and therefore reclaim storage.
  • A change of configuration flow to support the new workload, the choice of adaptive scopes or static, and just an eDiscovery admin required as a policy approver.
  • Three auditing events with the operation names of PriorityCleanupTagApplied, PriorityCleanupFileRecycled (for SharePoint and OneDrive), and PriorityCleanupDelete (for Exchange). At this time, these events don't have friendly names to select from the Microsoft Purview portal.
• In preview: Retention policies for Microsoft Copilot experiences now include threaded summaries from Copilot in Teams chat and channels.

Data Loss Prevention

• GA release: Help Prevent Users from Sharing Sensitive Info with Cloud Apps in Edge for Business
• GA release: Get started with data loss prevention policies for Fabric and Power BI

Data Security Investigations (preview)

• In preview: New support for data risk graphs in Data Security Investigations (preview). Data risk graph (preview) in Data Security Investigations (preview) uniquely visualizes correlations between impacted data, users, and their activities. It provides critical context to guide mitigation and next steps.

Data Security Posture Management for AI

• In preview: Rolling out, data risk assessments now also support identifying and protecting overshared data in Fabric, scanning the top 100 most accessed Fabric workspaces for sensitive information, or that are shared widely either internally or externally. Supported item types for scanning: Dashboard, Report, DataExploration, DataPipeline, KQLQuerySet, Lakehouse, Notebook, SQlAnalyticsEndpoint, and Warehouse.

Encryption

• Updated: Instructions for setting up Customer Key with Managed HSM, including Managed HSM configuration options, are now located in the main Customer Key setup article.

Insider Risk Management

• In preview: New support for data risk graphs in Insider Risk Management. Data risk graph (preview) in Insider Risk Management uniquely visualizes correlations between impacted data, users, and their activities. It provides critical context to guide alert mitigation and next steps.

Microsoft Purview

• In preview: New support for Microsoft Sentinel and data risk graphs in Microsoft Purview solutions. Data risk graphs (preview) in Microsoft Purview solutions allow you to view connections between impacted assets, users, and their activities in an interactive graph experience.

Sensitivity labels

• In preview: Newly supported for Channel Agent in Microsoft Teams, the highest priority sensitivity label is displayed in the chat for reference items, and for citations. There's also limited support for sensitivity label inheritance for AI-generated content (currently, only Loop and meetings support this inheritance).

  For more information about sensitivity label support for the preview of Channel Agent in Teams, and support by the other Microsoft Purview solutions, see Use Microsoft Purview to manage data security & compliance for Channel Agent in Teams.

• In preview: In Copilot in Teams chat and channels, threaded summaries display the highest priority sensitivity label from labeled content, which educates the user about the sensitivity of the data. In this initial release, the labels don't display their configured color.

August 2025

Data Governance

• In preview: Usage monitoring (preview) in Unified Catalog gives Data Governance Administrators a view of governed assets and data governance processing unit (DGPU) consumption across different governance domains.
• Updated: The data quality and data estate health pricing calculator helps users estimate total pricing and investment required for an organization to use data quality and data estate health capabilities for their data governance program.

Data Loss Prevention

• GA release: Learn about the Microsoft 365 Copilot policy location released to GA.
• Policy tips for Outlook highlight table:DLP Policy Tips support matrix for Outlook clients highlights
• General availability (GA): Learn about the Microsoft 365 Copilot policy location released to GA.
• In preview: You can rename DLP policies.
• In preview: Help Prevent Users from Sharing Sensitive Info with Cloud Apps in Edge for Business. This doesn't require devices be onboarded into Microsoft Purview.

Data Security Posture Management for AI

• New: Rolling out, the following new roles are added to support view-only permissions for DSPM for AI:

  • Purview Data Security AI Viewer: View-only permissions in DSPM for AI, for sensitivity labels, and sensitive information types only.
  • Purview Data Security AI Content Viewer: View-only permissions specific to AI interactions (prompts and responses) in DSPM for AI.
  • AI Administrator: Recently introduced role from Microsoft Entra to manage Microsoft Copilot. In Microsoft Purview, this role provides view-only permissions in DSPM for AI, for sensitivity labels, and sensitive information types—the equivalent of the Purview Data Security AI Viewer role, but also can be used with other management solutions.

Sensitivity labels

• General availability (GA): Now rolling out in general availability, support for files in SharePoint or OneDrive that are labeled with user-defined permissions. Support now includes search, data loss prevention, and eDiscovery support for newly uploaded and edited files.
• In preview: Rolling out, support for cross-cloud access to encrypted documents with Microsoft Entra configuration. As a result, users who are part of an organization in another cloud environment can open Word, Excel, and PowerPoint files that are encrypted by your organization. For example, these users might be in Microsoft Azure Government, or Microsoft Azure operated by 21Vianet.

July 2025

Data Governance

• General availability (GA): If your Fabric Lakehouse tenant is running on a virtual network or behind a private endpoint, you can now use Microsoft Purview data quality virtual network enabled compute to connect and perform data quality assessments, including profiling and rule-based scanning. This feature is now generally available and supported across all regions.

• General availability (GA): Critical data identification to measure percentage of business domains that have at least one critical data element defined is now generally available. Chief Data Officer (CDO), Data Stewards, and Data Product owners can measure and monitor if there any critical data elements in their business domain to govern.

• In preview: The custom metadata (preview) area in Unified Catalog centralizes the creation and management of user-defined attributes, which provide context to describe and organize data. Attribute types are the new business concept attributes (preview) and data asset attributes (formerly "managed attributes" in the classic governance experience).

• Update: You can customize the label for contacts in data products.

• In preview: Data quality error record publishing to customers’ cloud storage is now available in all supported Azure regions. Data engineers, data quality stewards, and analysts can review and correct data, as well as monitor continuous improvements by creating dashboards with Unified Catalog metadata and Data quality error records for their data governance and data quality teams. This feature helps Microsoft Purview Unified Catalog users not only measure and monitor data quality, but also improve it by enabling them to correct data quality error records and handle rule exceptions.

• General availability (GA): Virtual network (vNet) provisioning admin capability to provision virtual network for data quality scan is now generally available. Microsoft Purview Data Governance Administrators can provision a virtual network compute location in supported Azure regions by navigating to Settings > Unified Catalog > Virtual network.

Data Security Posture Management for AI

• In preview: Rolling out, a new Web searched filter in activity explorer that helps you locate web queries in prompts with the search query text itself displayed as part of the AI interaction event.
• New: The Overview page now has two views, for All AI apps (the default and previous view) and Microsoft 365 Copilot. The new Microsoft 365 Copilot view has recommendations and data specific to just Microsoft 365 Copilot to guide you through managing data security & compliance for these AI interactions.
• Update: Previously, an administrator who was assigned to one or more administrative units could create policies for all users. This scenario is now prevented and only unrestricted administrators can create the one-click policies that apply to all users.
• Update: The recommendation Protect items with sensitivity labels from Microsoft 365 Copilot and agent processing now helps you create the DLP policy without leaving DSPM for AI. You're prompted to select one or more of your sensitivity labels for the one-click policy that's named DSPM for AI - Protect sensitive data from Copilot processing.

Sensitivity labels

• In preview: Gradually rolling out, a change to the sensitivity labeling scheme to replace parent labels with label groups. Although users won't see a difference in their apps, label groups support better organization and reduce the deployment complexity. Unlike parent labels, they can't be configured for label settings other than name, description, color, and priority. They also can't be published by themselves. To convert existing parent labels to label groups, you must manually migrate them.

Insider Risk Management

• In preview: New support for a Microsoft Security Copilot Agent for Insider Risk Management. The Microsoft Purview Insider Risk Management Triage Agent provides an agent-managed alert queue where the alerts about the highest risk activities are identified and prioritized on the Alert Triage Agent dashboard. For more information, see Security Copilot Agents in Microsoft Purview Overview (preview).

June 2025

Data Governance

• General availability (GA): Duplication checks on names for business concepts (data products, critical data elements, glossary terms, and OKRs) will warn users and suggest choosing another name during the creation or editing process.
• In preview and updated: Self-service job scheduling and job history monitoring features are now released to all supported Azure regions. A Data Governance Administrator can set up the schedule to publish Unified Catalog metadata daily, weekly, and monthly. Updated: Data product subscription status data now flows to self-service analytics domain model for self-serve insight.
• General availability (GA): Business objective and key results (OKR) alignment controls to measure data value creation (percentage of a data product associated with a business OKR) is now generally available. Chief Data Officer (CDO), Data Stewards, and Data Product owners can measure the value of a data product and its associated data assets by measuring an OKR associated with a data product.

Data Lifecycle Management

• General availability (GA): New retention policy locations and expanded support for Copilots and AI apps. Teams chats have been separated from Microsoft 365 Copilot interactions, with a location just for Teams chat. Current locations that support Copilot and other AI apps:

  • Microsoft Copilot experiences: Microsoft 365 Copilot, Security Copilot, Copilot in Fabric, Copilot Studio
  • Enterprise AI Apps: Microsoft Entra-registered AI apps, ChatGPT Enterprise, Microsoft Foundry
  • Other AI Apps: ChatGPT, Google Gemini, Microsoft Copilot, DeepSeek

Data Loss Prevention

• In preview: New Block Users From Sharing Sensitive Information to Unmanaged AI Apps Via Edge on Managed Devices (preview)Browser based DLP extends monitoring and control of sharing activities and protective actions to Microsoft Edge without the need to onboard the device.

Data Security Posture Management for AI

• General availability (GA): Recommendation and one-click policy to capture interactions for Microsoft Copilot experiences, which captures prompts and responses for Security Copilot and Copilot in Fabric. The first Copilot in Fabric supported by DSPM for AI and other Microsoft Purview solutions is Copilot for Power BI.
• In preview: Rolling out, new one-click policies from the recommendation Extend your insights for data discovery. These use the recently released browser-based DLP capability that blocks users from sharing sensitive information to unmanaged AI apps via Edge without the need to onboard the device:
  • DSPM for AI - Detect sensitive info added to AI sites
  • DSPM for AI - Detect when users visit AI sites
  • DSPM for AI - Detect sensitive info shared in AI prompts in Edge
• Documentation update: The main documentation for DSPM for AI is moved to Learn about Data Security Posture Management (DSPM) for AI, with new articles for each major AI app or category that's listed in the updated Microsoft Purview data security and compliance protections for generative AI apps article. For example, if you're interested specifically in Microsoft 365 Copilot, that information is moved to Use Microsoft Purview to manage data security & compliance for Microsoft 365 Copilot & Microsoft 365 Copilot Chat.