The data map provides a unified map of your data assets and can identify the assets’ relationships for effective governance. Defender for Cloud Apps gives you full visibility of your SaaS app landscape to help protect your apps.
When an enterprise account is created, either by upgrading a free tier account or by creating a new enterprise account, the users of the enterprise account have the ability to register data sources within your data estate. Registration of data sources enables users of enterprise account to scan the registered data sources. Once registration and scan activities are completed for a data source, data flow occurs between Data Map and some Microsoft Purview solutions.
Important
If you do not want to authorize data flows throughout Microsoft Purview, do not register or scan any of the data sources in your data estate into Data Map.
The following table describes how Microsoft Purview solutions share data to Data Map and receive data from Data Map and Microsoft Defender for Cloud Apps.
Microsoft Purview Solution
What gets shared to Data Map
What is received from Data Map
What is received from Microsoft Defender for Cloud Apps
Microsoft Purview Audit
N/A
- Service configuration data - Audited activities data (including audit records and log query permissions) - Admin operations data
N/A
Microsoft Purview Unified Catalog
N/A
- Asset details, including asset metadata, classification data, and label data
N/A
Microsoft Purview Data Loss Prevention (DLP)
- DLP policies and configuration
- Classification data - Policy hit audit events and policy distribution acknowledgment status
N/A
Microsoft Purview Information Protection
- Label definitions, policies, and configurations -Label insights and aggregations for Microsoft 365 - Microsoft Information Protection policies and configurations - Classification data for Microsoft 365 - Asset metadata for Microsoft 365 - Telemetry data for protection policies and labels
- Label insights and aggregations - Classification data - Tenant roles, role groups, and license information - Scan setup and execution details - Asset metadata (owner and additional information including name, path, consent status) - Policy hit audit events and policy distribution acknowledgment status
N/A
Microsoft Purview Insider Risk Management
N/A
N/A
- Cloud app events (activity log) and connection status
Microsoft Purview Policy
N/A
- Label names, policies and Ids - Policy definition