MC1182008 - Microsoft Purview: Inline protection for sensitive data shared over the network with non-Microsoft SASE integrations

Message ID

MC1182008

View in Message Center

Service

Microsoft Purview

Published

Oct 31, 2025

Tag

New feature

User impact

Admin impact

Roadmap ID

522095

View in M365 Roadmap

Platforms

Web

Summary

Microsoft Purview DLP will integrate with iboss and Netskope SASE platforms by mid-November 2025 to enable inline network traffic inspection and protection of sensitive data across 35,000+ cloud apps. Admins must configure integration and manage alerts via Purview and Microsoft Defender.

More information

Microsoft Purview Data Loss Prevention (DLP) is being extended to the network layer through integration with iboss Zero-Trust SASE Platform or Netskope One SASE Platform. This update will be generally available starting mid-November 2025. It enables organizations to intercept and inspect traffic inline and enforce actions based on Purview DLP policy conditions. This helps prevent sensitive data from being shared with untrusted cloud applications through browsers, apps, APIs, add-ins, and more—including generative AI platforms, cloud storage, and content-sharing services—while managing alerts and incidents through Purview and Microsoft Defender. If configured, these signals also inform user risk indicators in Insider Risk Management.

This message is associated with Microsoft 365 Roadmap ID 522095.

When this will happen:

General Availability (Worldwide): Rollout will begin in mid-November 2025 and is expected to complete by mid-December 2025.

How this affects your organization:

Who is affected: Admins managing Microsoft Purview DLP policies and organizations using iboss Zero-Trust SASE or Netskope One SASE platforms.
What will happen:
- A new scenario-focused experience will be available for creating DLP policies.
- Admins can select the Inline Web Traffic scenario to configure granular rules for detecting and protecting sensitive data.
- Protection will extend to over 35,000 unmanaged cloud applications.
- Alerts and incidents will be managed in Microsoft Purview and Microsoft Defender.
- The feature will be available by default but requires integration setup to function.

What you can do to prepare:

Ensure your global administrator enables and configures integration with iboss Zero-Trust SASE or Netskope One SASE platforms.
Activate Purview pay-as-you-go to enable this capability. Learn about the Pay-as-you-go billing model.
Review your current configuration to assess impact.
Notify helpdesk staff and update internal documentation as needed.
Learn more: Learn about Microsoft Purview billing models | Microsoft Purview | Microsoft Learn

Compliance considerations:

Question	Answer
Does the change add integration to third-party software products?	Yes. This change integrates with iboss Zero-Trust SASE Platform and Netskope One SASE Platform.
Does the change modify Data Loss Prevention (DLP) policies or enforcement?	Yes. It introduces a new scenario-based DLP enforcement for inline web traffic.
Does the change alter how existing customer data is processed, stored, or accessed?	Yes. It enables inline inspection and protection of sensitive data shared via network traffic.
Does the change introduce or significantly modify AI/ML capabilities that interact with customer data?	Yes. It includes detection of sensitive data shared with generative AI platforms.
Does the change alter how admins can monitor, report on, or demonstrate compliance activities?	Yes. Alerts and incidents will be managed through Microsoft Purview and Microsoft Defender.
Does the change include an admin control and can it be controlled through Entra ID group membership?	Yes. The feature must be enabled and configured by a global administrator.