Share via

Blocking File Uploads to Generative AI Websites Using Microsoft Purview DLP

MEHMET TUNAHAN OKUMUS 35 Reputation points
2025-02-04T12:51:02.6933333+00:00

How can file uploads to generative AI websites, such as ChatGPT, Perplexity, and Deepseek, be blocked regardless of file type or size?

Currently, file uploads to certain websites like Gmail and iCloud are managed using Microsoft Purview DLP, but blocking uploads to generative AI websites has not been successful.

Any guidance or steps on how to achieve this would be appreciated.

Microsoft Security | Intune | Other
Microsoft Security | Microsoft Purview

Answer accepted by question author

Anonymous
2025-02-05T19:10:30.78+00:00

@Mehmet OKUMUŞ

Welcome to the Microsoft Q&A forum.

Please go through the below steps and confirm us ;

  • Double-check that the domains for the generative AI websites (e.g., chatgpt.com, perplexity.ai, deepseek.com) are correctly entered in the DLP policy settings.
  • Ensure that the DLP policy is applied to all relevant locations and endpoints. Sometimes, policies might not cover all the necessary areas.
  • If you have multiple DLP policies, make sure the policy blocking uploads to generative AI websites has the appropriate priority and is not being overridden by other policies.
  • Ensure that endpoint DLP settings are configured correctly. This includes verifying that the necessary agents are installed and running on user devices.
  • Conduct thorough testing by attempting to upload files to the specified websites. Check the logs and reports in the Microsoft Purview admin center to identify any issues or misconfigurations.

I hope the above steps will resolve the issue, please do let us know if issue persists. Thank you

Was this answer helpful?

1 person found this answer helpful.
0 comments

1 additional answer

Sort by: Most helpful
Most helpful Newest Oldest

  1. AI answer

    2025-02-04T12:51:02.7+00:00

    To block file uploads to generative AI websites using Microsoft Purview Data Loss Prevention (DLP), you can configure DLP policies to restrict access to specific service domains. Here are the steps you can follow:

    1. Create a DLP Policy: In the Microsoft Purview admin center, navigate to Data loss prevention and select Policies to create a new policy.
    2. Specify Locations: Ensure that the policy is applied to the appropriate locations, such as SharePoint sites and OneDrive accounts.
    3. Define Policy Settings: Under the policy settings, you can specify the conditions for the DLP rules, including the types of sensitive items you want to restrict.
    4. Service Domains: In the DLP policy settings, navigate to the Browser and domain restrictions to sensitive data section. Here, you can add the domains of the generative AI websites you want to block (e.g., chatgpt.com, perplexity.ai, deepseek.com) to the Service domains list.
    5. Set Actions: Choose the action to block uploads to these domains. You can set the action to Block or Block with override to prevent users from uploading files to these specified domains.
    6. Test and Monitor: After implementing the policy, monitor its effectiveness and make adjustments as necessary to ensure it is working as intended.

    By following these steps, you should be able to block file uploads to generative AI websites effectively.

    References:

    AI-generated content may be incorrect. Read our transparency notes for more information.

    Was this answer helpful?

Your answer

Answers can be marked as 'Accepted' by the question author and 'Recommended' by moderators, which helps users know the answer solved the author's problem.