Microsoft Purview Compliance portal will soon feature a timeline view of user activity, showing potentially risky interactions flagged for review. This will be available in public preview in June 2025 and general availability in July 2025. No admin action is required, but admins should be informed and documentation updated.
Coming soon to the Microsoft Purview | Compliance portal: A new timeline view of user activity that offers a comprehensive timeline view of a user's potentially risky interactions that may result in a data security or compliance incident. It includes all interactions that have been flagged for review for that policy. This empowers reviewers by providing context on the user's history, enabling them to address violations with a complete view of all other potential risky interactions that may result in a data security or compliance incident. As a result, reviewers can make informed decisions, streamlining the review process to be both efficient and effective.
This message is associated with Microsoft 365 Roadmap ID 489840.
When this will happen:
Public Preview: We will begin rolling out early June 2025 and expect to complete by late June 2025.
General Availability (Worldwide): We will begin rolling out early July 2025 and expect to complete by late July 2025.
How this will affect your organization:
After this rollout, policy hits will feature a notification bar that includes a link. This link will allow reviewers to view all risky interactions from the user in the same policy, displayed in a side panel:
This change will be on by default.
What you need to do to prepare:
This rollout will happen automatically by the specified date with no admin action required before the rollout. You may want to notify your admins about this change and update any relevant documentation.
Learn more: The Investigate policy matches and alerts section in Investigate and remediate communication compliance alerts | Microsoft Learn