MC1182689 - Microsoft Purview | New Copilot Security Controls in Microsoft Admin Center

Introduction

To help organizations adopt Microsoft 365 Copilot securely, Microsoft Purview is introducing new capabilities in Microsoft Admin Center. These enhancements allow AI and IT admins to gain visibility into oversharing risks, remediate issues, and apply a new Data Loss Prevention (DLP) policy directly within Microsoft Admin Center. This update supports secure usage of Copilot by enabling protection of sensitive interactions.

This message is associated with Microsoft 365 Roadmap ID 523212.

When this will happen:

• Public Preview: We will begin rolling out mid-November 2025 and expect to complete by late November 2025.
• General Availability (Worldwide): We will begin rolling out mid-January 2026 and expect to complete by late January 2026.

How this affects your organization:

• Who is affected: Admins managing Microsoft 365 Copilot and data security policies via Microsoft Admin Center or Purview portal.
• What will happen:
  • A new Security pivot will be added to the Microsoft Admin Center.
  • Admins can create a policy to block specific sensitive information types from being used in Copilot.
  • Visibility into oversharing risks and sensitive Copilot interactions will be available.

What you can do to prepare:

• Review how Copilot is secure by default and assess if additional protections are needed.
• Once the feature is released:
  • Use an Entra AI Admin or Entra Global Admin role to create a policy to block sensitive information types in Microsoft Admin Center.
  • Collaborate with your data security admin to apply additional protections and ensure compliance with AI regulations.
  • These actions can also be performed in the Purview portal. Learn more: Use Microsoft Purview to manage data security & compliance for Microsoft 365 Copilot & Microsoft 365 Copilot Chat.

Compliance considerations: