MC1045278 - Microsoft Purview | Data Loss Prevention: New data protection in Microsoft Edge for Business on unmanaged devices

Service

Microsoft 365 suite
Microsoft Purview

Published

Apr 1, 2025

Tag

New feature
User impact
Admin impact

Platforms

Web

Summary

Microsoft Purview Data Loss Prevention (DLP) will be integrated into Microsoft Edge for Business on unmanaged devices. The rollout starts in May 2025 for Public Preview and June 2025 for General Availability. Admins can configure DLP protections directly in Edge for activities involving Entra-managed apps. No action is required before rollout.

More information

Coming soon: Microsoft Purview | Data Loss Prevention (DLP) will be integrated in the Microsoft Edge browser to offer DLP protections that apply directly in the Edge browser and target scenarios where users on unmanaged (or bring-your-own/BYO) Windows desktop devices and Mac desktop devices are sharing data to or exfiltrating data from organization-managed cloud apps (apps that use Microsoft Entra authentication for user sign-in).

This message is associated with Microsoft 365 Roadmap ID 486366.

When this will happen:

Public Preview: We will begin rolling out late May 2025 and expect to complete by mid-June 2025.

General Availability (Worldwide): We will begin rolling out early June 2025 and expect to complete by late June 2025.

How this will affect your organization:

After this rollout, admins can apply protections from Purview DLP that apply directly in the Edge browser to target user activities sharing data to or from Entra-managed apps, when the user is using Edge for Business on an unmanaged device.

Admins can configure Purview DLP to block or audit users when they perform activities including uploading or downloading files with sensitive information.

Admins can configure policies in Purview DLP to apply protections in the Edge browser and view outcomes for investigation in the Microsoft Defender portal.

This change will be available by default for Admins to configure in Purview. Features aren't activated by default.

What you need to do to prepare:

This rollout will happen automatically by the specified dates with no admin action required before the rollout. Review your current configuration to assess the impact on your organization. We recommended informing Security admins and Edge admins at your organization about this change to DLP features. You may want to update any relevant documentation.

Before rollout, we will update this post with new documentation.