Microsoft 365 Message Center Archive

MC1183007 - Microsoft Purview DLP and Edge for Business: Inline data protection for file uploads to unmanaged GenAI apps

Message ID

MC1183007

View in Message Center

Service

Microsoft Purview

Last Updated

Nov 17, 2025

Published Nov 5, 2025

Tag

Updated message
New feature
User impact
Admin impact

Roadmap ID

518642

View in M365 Roadmap

Platforms

Web

Summary

Microsoft Purview DLP now offers inline file upload protection in Edge for Business to prevent data leaks to unmanaged GenAI apps. Admins can enforce policies by file size, type, and sensitivity on Intune-managed Windows devices. Public preview starts late November 2025, with general availability by late December 2025.

More information

Updated November 17, 2025: We have updated the timeline. Thank you for your patience.

Introduction:

We are introducing inline file upload protection for Microsoft Edge for Business to help prevent data leakage when users upload files to consumer generative AI (GenAI) apps in the browser. This complements the existing text upload protections available today for unmanaged GenAI apps and can be layered with Endpoint DLP protections. With this update, admins can detect and enforce inline protections on file uploads in Edge for Business. Policies can target file-specific conditions such as file size, file type, and sensitive information types, enabling organizations to audit or block activities for users on Intune-managed Windows devices.

This message is associated with Microsoft 365 Roadmap ID 518642.

When this will happen:

  • Public Preview: Begins late November 2025 (previously mid-November); expected to complete by early December 2025.
  • General Availability (Worldwide): Begins late November 2025 (previously early December); expected to complete by late December 2025.

How this affects your organization:

  • Who is affected: Admins managing Microsoft Purview DLP policies and Edge for Business on Intune-managed Windows devices.
  • What will happen:
    • Admins can extend existing Purview collection and DLP policies to include file upload protection for unmanaged GenAI apps.
    • Inline protections are built directly into Edge for Business.
    • Automated behaviors will block use of unprotected browsers for users included in blocking policies.
    • Policies can be configured based on file size, type, and sensitivity.

What you can do to prepare:

  • No action is required before rollout.
  • Review your current collection and DLP policies.
  • Update policies to include file upload conditions if needed.
  • Inform your Security and Edge admins about this enhancement.

Learn more:

Compliance considerations:

QuestionImpactExplanation
Does the change modify, interrupt, or disable any of the following capabilities (Purview): DLP policies or enforcementYesInline file upload protection modifies how DLP policies are enforced in Edge for Business.
Does the change alter how admins can monitor, report on, or demonstrate compliance activities?YesAdmins gain new visibility and control over file uploads to unmanaged GenAI apps.