Enable Microsoft Purview DLP policies for Power BI datamarts
Important
This content is archived and is not being updated. For the latest documentation, go to What's new in Power BI?. For the latest release plans, go to Dynamics 365, Power Platform, and Cloud for Industry release plans.
| Enabled for | Public preview | General availability |
|---|---|---|
| Users by admins, makers, or analysts | 
Apr 1, 2023 |
- |
Business value
To help organizations detect and protect their sensitive data, Power BI supports Microsoft Purview Data Loss Prevention (DLP) policies. Administrators can create and configure DLP policies for Power BI so that when a policy detects the upload of sensitive data to a dataset or datamart, sharing with unauthorized users (for example guest users from external organizations) can be blocked, a custom DLP policy tip can be shown to the dataset/datamart owner that explains the nature of the sensitive content and presents the organization's guidelines for handling sensitive data in Power BI, and an alert can be triggered in the Microsoft Purview compliance portal for monitoring and management by administrators.
Feature details
Providing data protection capabilities in Power BI is critical to enabling our customers to control and protect their sensitive enterprise data. We've been leading the landscape with data protection capabilities in Power BI. We've done this by integrating Microsoft’s leading security solutions for information protection, threat protection, and cloud app security.
Microsoft Purview (formerly known as Microsoft 365 compliance) Data Loss Prevention (DLP) policies enable enterprise customers to implement policies for Office, Teams, SharePoint, and more. We realized that DLP policies could be leveraged to enable Power BI enterprise customers to meet some of their top-ask security requirements (particularly from the Financial Services and Healthcare sectors) - for example, the ability to detect, get alerts, and take protective action upon upload of PII data.
The DLP policies include the ability to detect upload of models that contain sensitive info types (both out-of-the box and custom types) and/or that are labeled with specified sensitivity labels. Previous releases have introduced DLP policy support for datasets. This release extends DLP policy support to Power BI datamarts.
To learn more about Power BI's data protection capabilities, go to the following documentation:
- Data loss prevention policies for Power BI (preview)
- Data protection in Power BI
- Sensitivity labels in Power BI
- Using Microsoft Defender for Cloud Apps controls in Power BI