@simon selvin Thanks for posting in our Q&A.
MAM is about app management. We use app protection policy to protect apps. This protection is in app level. For more details, please refer to the following article:
https://learn.microsoft.com/en-us/mem/intune/apps/app-protection-policy
For example, if we create an app protection policy (setting like Restrict cut, copy, and paste), add Outlook as a managed app in this policy and deploy this policy to a user group, when we use a user (which is included in this user group) to sign in Outlook, we can't copy data from Outlook to other apps. Outlook is a protected app.
Hope it will clarify something.
If the answer is the right solution, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.