Microsoft Purview introduces a new feature for data governance administrators to permanently delete sensitive content from Exchange mailboxes, bypassing legal holds and retention policies. This feature is part of Microsoft 365 Roadmap ID 392838 and will roll out in early February 2025. It includes multiple approvals and auditing for security.
This new feature enables data governance administrators to expedite the permanent deletion of sensitive content from Microsoft Exchange mailboxes, overriding any existing retention settings or eDiscovery holds. This process may be required for security or privacy, such as after a data spillage incident or for compliance and regulatory requirements.
This message is associated with Microsoft 365 Roadmap ID 392838.
When this will happen:
Public Preview: We will begin rolling out early February 2025 and expect to complete by mid-February 2025.
How this will affect your organization:
Priority Cleanup administrators can now set up a Priority Cleanup policy for Exchange to create exceptions to retention principles and e-Discovery holds for specific scenarios. Once administrators are within the Data Lifecycle Management (DLM) Solution on Microsoft Purview, they can visit the Priority Cleanup tab and follow the wizard to set-up this policy. Like auto-apply retention labels, Priority Cleanup supports policy simulation mode, so administrators can check the returned samples in case the policy configuration needs any fine-tuning before enabling the policy. Once set-up, because the deletion by a priority cleanup policy is irreversible and can override existing holds, the process requires multiple approvals, specific roles, and is audited. Thus, respective reviewers must be mandatorily added during policy creation to allow for disposition of items under a retention or e-Discovery hold.
What you need to do to prepare:
Because of the built-in safeguards, the feature itself is enabled by default at the tenant level. However, Priority Cleanup can be turned off on the Priority Cleanup settings page. If you can't create new Priority Cleanup policies, refer to your Data Lifecycle Management documentation for necessary roles and permissions requirements. A new role permission "Priority cleanup administrator" is now added to Purview role permissions to enable data governance administrators to use this feature.