Microsoft Purview is a comprehensive set of solutions that helps organizations govern, protect, and manage data. It brings together data security, data governance, risk, and compliance solutions to help organizations protect sensitive data across clouds, apps, and endpoints, while managing regulatory compliance requirements.
Protect sensitive data with classification, labeling, encryption, and data loss prevention across your digital estate
Manage regulatory compliance, insider risks, communication compliance, and eDiscovery workflows
Unified data governance with data catalog, data map, and data lineage across multi-cloud environments
Classify, label, and protect sensitive data with sensitivity labels, auto-labeling policies, and encryption. Protect data in Microsoft 365, on-premises, and third-party clouds.
Prevent accidental sharing of sensitive data with policies across Exchange, SharePoint, OneDrive, Teams, endpoints, and third-party cloud apps.
Detect and act on risky user activities with ML-based signals. Identify data theft, data leaks, security violations, and departing employee risks.
Restrict communication and collaboration between specific groups of users in Teams, SharePoint, and OneDrive to prevent conflicts of interest and protect sensitive information.
Enforce just-in-time access for privileged admin tasks in Exchange Online. Require approval workflows for elevated operations to reduce standing admin privileges.
Discover, protect, and investigate sensitive data risks across your digital estate. Unify Purview signals to monitor and remediate data risks for both traditional apps and AI agents.
Identify, collect, preserve, and export electronic information for legal and regulatory purposes. Support eDiscovery (Standard) and eDiscovery (Premium) workflows.
Monitor communications for policy violations across Exchange, Teams, and third-party platforms. Detect harassment, regulatory violations, and sensitive data sharing.
Retain or delete content with retention policies, retention labels, and adaptive scopes. Manage content lifecycle across Exchange, SharePoint, OneDrive, Teams, and Viva Engage.
Manage high-value content as records with declaration, disposition review, and proof of disposal. Meet regulatory and legal record-keeping requirements across Microsoft 365.
Search and investigate user and admin activities across Microsoft 365 services. Audit (Standard) provides 180-day retention; Audit (Premium) offers 1-year retention, intelligent insights, and high-bandwidth API access.
Assess compliance posture with 300+ pre-built regulatory templates (GDPR, HIPAA, ISO 27001, etc.). Track improvement actions and generate compliance reports.
Scan and map your data estate across Azure, AWS, GCP, and on-premises. Discover data assets, classify sensitive data, and trace data lineage automatically.
Curate and manage data assets in a searchable business catalog. Enable data consumers to discover, understand, and request access to governed data products.
Security Copilot integrates with Microsoft Purview to help you investigate data security incidents, understand compliance requirements, and get contextual guidance.
Use Copilot to investigate DLP alerts, understand policy matches, and recommend remediation actions.
Ask Copilot about regulatory requirements, compliance controls, and recommended configurations.
Get AI-powered sensitivity label recommendations based on content analysis and organizational context.
Data governance and compliance labs. deploy sensitivity labels, configure DLP, manage insider risk, and run eDiscovery investigations in real enterprise scenarios.
Create a sensitivity label taxonomy aligned to your data classification policy, configure visual markings and encryption settings, publish labels to pilot groups, set up auto-labeling policies for credit card and SSN detection, and monitor adoption with Activity Explorer.
Create DLP policies using built-in and custom sensitive information types, configure policy tips and end-user notifications, set up incident reports for compliance officers, test with simulated data sharing scenarios, and tune rules to minimize false positives.
Configure prerequisites (audit logging, HR data connector), create insider risk policies for data theft by departing employees, set up priority user groups and risk indicators, investigate triggered alerts in the case management workflow, and escalate to eDiscovery.
Create a Premium eDiscovery case for a legal hold scenario, add custodians and non-custodial data sources, build targeted search queries with KQL, process and review collected data in review sets, apply predictive coding for relevance scoring, and export the final production set for legal counsel.
Configure communication compliance policies for regulatory monitoring, enable unified audit logging, set up adaptive retention policies with intelligent scoping, and design a data lifecycle management framework.
Deploy records management with file plan descriptors, configure information barriers for regulated teams, set up Compliance Manager assessments, and create event-based retention triggers.
Configure DSPM for AI in Microsoft Purview, discover AI data flows, classify sensitive training data, monitor AI interactions with labeled content, and enforce responsible AI compliance policies.