What's new in Microsoft Purview

Whether it be adding new solutions to the Microsoft Purview governance or compliance portals, updating existing features based on your feedback, or rolling out fresh and updated documentation, Microsoft Purview helps you stay on top of the ever-changing data governance and risk and compliance areas. Take a look at the following information to see what's new in Microsoft Purview.

Tip

If you're not an E5 customer, use the 90-day Microsoft Purview solutions trial to explore how additional Purview capabilities can help your organization manage data security and compliance needs. Start now at the Microsoft Purview compliance portal trials hub. Learn details about signing up and trial terms.

November 2023

Announced at Microsoft Ignite

The following new Microsoft Purview capabilities are announced at Microsoft Ignite:

• Support for Microsoft Copilot: Microsoft Purview strengthens your data security and compliance for Microsoft Copilot for Microsoft 365.
• In preview: The Microsoft Purview portal has a new look and capabilities to help you govern and protect your data, wherever it lives.

Communication compliance

• General availability (GA): Support for Microsoft Copilot for Microsoft 365.
• Report this conversation for Viva Engage: Communication compliance now has a Report conversations option for Viva Engage.
• Conversation view: You can now load up to 20 messages before and after a message, and download a conversation.

Data lifecycle management and records management

• General availability (GA): You can programmatically apply and manage retention labels for SharePoint and OneDrive by using Microsoft Graph API to lock and unlock records, set retention labels, remove retention labels, and get metadata for retention labels.
• General availability (GA): Microsoft Copilot interactions can be retained or deleted with a retention policy for Teams chats and Copilot interactions.
• General availability (GA): The versions of files referenced in an interaction for Microsoft Copilot can be retained as a cloud attachment with an auto-apply retention label policy.
• New guidance: Learn about retention for Microsoft Copilot for Microsoft 365.

Data Loss Prevention

• In preview: Simulation mode for Microsoft Purview Data Loss Prevention (DLP) policies replaces the Test and Test with policy tips policy states. When a policy is in simulation mode, it's run as if it were being enforced, without any actual enforcement.

• In preview: Links to advanced hunting are available for DLP alerts in Microsoft 365 Defender.

• In preview: Addition filters for data loss prevention alerts in the Defender portal.

• In preview: Enhanced customization of email notifications to end users for Microsoft 365 services. We've added multiple tokens, and enhanced editing experience and email preview.

• In preview: Microsoft managed storage for DLP evidence. When saving evidence of the matches detected by your DLP policies, you can now use Azure blob storage managed by Microsoft as an alternative to creating an Azure blob that you manage yourself.

• General availability (GA): Optical character recognition (OCR) scanning enables Microsoft Purview to scan content in images for sensitive information.

Information protection

• New graphic added to Consider a phased deployment to conceptually illustrate a phased deployment of sensitivity labels and DLP policies that become more integrated, and with more restrictive controls.

Insider risk management

• Updated the maximum number of policies available for any template from five to twenty.
• For custom indicators, clarified the waiting period required before uploading data after custom indicators and associated policies have been updated.

Microsoft Priva

• In preview: Identify duplicates, apply actions once to all duplicate items, and filter duplicates from view when reviewing data for a subject rights request.

Sensitivity labels

• General availability (GA): Sensitivity labels are recognized and used by Copilot for Microsoft 365 to provide an extra layer of protection for your organization's data.

October 2023

Adaptive scopes

New guidance: How adaptive scopes work with Microsoft Entra administrative units

Communication compliance

• Clarified when a user-reported messages policy is implemented for an organization.
• Clarified limitations for recurring and unscheduled meetings when reviewing Teams meetings transcripts.

Data lifecycle management and records management

• General availability (GA): Customize what happens at the end of the retention period by running a Power Automate flow.
• New guidance for migrating from older SharePoint features: Migration strategies for moving to Microsoft Purview risk and compliance solutions

Data loss prevention

• In preview:

  • New JSON code example for setting up Investigator data actions on Azure blob storage
  • Support for ARM64 Endpoint devices

• General availability (GA)

  • New methods for testing exact data match (EDM) sensitive information types (SITs):
    • Testing an EDM SIT through the Sensitive Information Types path
    • Test your EDM SIT through the EDM Classifiers path
  • Added instructions for assigning permissions and role groups for testing SITs

Insider risk management

• Added a new section on how events excluded from risk scoring are handled for sequences.
• Clarified how to specify multi-level subdomains for a root domain when creating a domains detection group.

Microsoft Priva

• In preview: New assisted redaction and search and redact capabilities for subject rights requests.
• In preview: Advanced filtering for data collected for subject rights requests.
• Email notifications for policy matches can now be customized as sent from an organization's email address instead of from Microsoft.

Sensitivity labels

• General availability (GA): Outlook on the web supports the sensitivity bar and label colors.
• General availability (GA): PDF support for auto-labeling policies, default sensitivity labels for SharePoint document libraries, and labeling activities in Office on the web that include manual labeling and displaying labeled documents, and encrypted PDFs that are now supported for DLP, eDiscovery, and search. You must opt-in for this PDF support.
• General availability (GA): Now in Current Channel, in Word, Excel, and PowerPoint for Windows and Mac, users can no longer select Information Rights Management (IRM) options that can override your sensitivity label encryption settings. Instead, users are prompted to apply a sensitivity label. For more information, see the updated section, Information Rights Management (IRM) options and sensitivity labels.
• Updated guidance:
  • For auto-labeling policies, added a callout note that simulation results might not include expected files because they were updated after simulation ran.
  • New requirement for a default sensitivity label for a SharePoint document library that files must contain content to be labeled. Empty files are labeled when they are updated with content.
  • Clarification that sensitivity labels to protect meetings don't extend to related meeting items, such as recordings, transcripts, whiteboard, and tasks.
  • The Label priority (order matters) section is updated to reflect the updated UI that displays Priority instead of Order for the Labels page of the Microsoft Purview compliance portal.

September 2023

Audit

• Added new Microsoft Graph Data Connect audit activities for user and admin activities.
• Clarified the audit activities for Microsoft Teams that are available in commercial versus government subscriptions.

Communication compliance

• In preview: Review Teams meetings transcripts for actionable alerts.
• Update for new feature that highlights the condition that caused a policy match when you select a message on the Pending or Resolved tab.
• Update to clarify the image sizes supported for detection.
• Update to clarify the retention limit for Filter email blasts reports.

Compliance Manager

• Improvement actions have a new design to make it easier to digest status information and record implementation and testing work.
• Improvement actions no longer support the "parent" testing type, which linked the test status to that of another action.
• The page formerly titled "Compliance score calculation" has been renamed Compliance Manager scoring, and has updates to clarify action types and scoring.

Data lifecycle management and records management

• General availability (GA): Support for administrative units—for both data lifecycle management and records management.
• In preview: Now in beta, you can programmatically apply and manage retention labels for SharePoint and OneDrive by using Microsoft Graph API to lock and unlock records, set retention labels, remove retention labels, and get metadata for retention labels.

Data loss prevention

• Named entities are now supported on government clouds. The full list of supported clouds now includes:

  • Microsoft Commercial Cloud
  • Microsoft Government Community Cloud
  • Microsoft 365 Government Community Cloud High
  • Microsoft 365 Department of Defense

• General availability (GA): Just-in-time protection for Endpoints is now generally available.

  • Just-in-time protection
  • Use Endpoint Just-in-time protection

eDiscovery

• In preview: New Microsoft Teams support as a non-custodial data source.
• Updates to clarify the behavior of disabled user accounts in hold tracking mailbox diagnostic logs.
• Updated subscription and licensing requirements for litigation holds.
• Clarified support for SharePoint sites and historical versions in multi-geo environments.
• Updated for managing custodial and non-custodial holds and associated data sources.
• Clarification on how to select all SharePoint sites in a content search.
• Updates to clarify that anonymous users that join Microsoft Teams meetings are currently supported in search queries.
• Updates to clarify AZCopy version support for error remediation when processing data.
• Clarification about reported differences in draft collections for the number of locations with hits and the total number of Exchange mailboxes, SharePoint and OneDrive sites, or Exchange public folders searched.
• Updates for the requirement that the folder ID in the targeted collection script must be in hexadecimal (HEX) value format.
• Updates that jobs listed on the jobs report page can't be deleted or removed. Long-running jobs automatically time out after 7 days.

Information barriers

• Updated subscription and licensing references in all articles.

Information protection

• New guidance: Deployment strategies

Insider risk management

• Update on details for Date/Time fields when creating a connector that imports third-party insider risk detections.
• Update to clarify amount of time required before uploading data after creating an Insider Risk Indicators connector.
• Update to change the minimum number of vCPU processors required for Hyper-V and virtual machines.

Microsoft Priva

• Privacy Risk Management policies now allow users to select trainable classifiers as a data source to monitor when creating policies.

Sensitive information types

• Two new sensitive information types have been added:
  • Philippines passport number
  • Qatari identification card number

Sensitivity labels

• General availability (GA): In SharePoint and Teams, you can see and apply sensitivity labels to documents by using the details pane.
• General availability (GA): The following new conditions are now generally available for auto-labeling policies. Just the final new condition listed requires an advanced rule, and is applicable to OneDrive and SharePoint only. All the other new conditions are available in common rules:
  • Attachment or file extension is
  • Attachment or document name contains words or phrases
  • Attachment or document property is
  • Attachment or document size equals or is greater than
  • Document created by

August 2023

Audit

• Updates for new Microsoft Purview governance activities logged in the Microsoft 365 audit log.
• Updates for audit activities accessible only by search queries performed by an unrestricted admin.
• Updates for site administration activities logged in the Microsoft 365 audit log.
• Updates for quarantine activities logged in the Microsoft 365 audit log.
• Updates for Microsoft Teams auditing activities for exporting recordings and transcripts.
• Updates for permissions and access to audit search from the compliance portal.

Communication compliance

• Export action: Export a collection of message details if your files exceed 3 MB.

Data lifecycle management and records management

• Improvements for archive mailboxes: When a mailbox is enabled for archive and assigned a retention policy to retain items, or any other type of hold, more storage space is available to support a large number of deleted items. The storage quota for the Recoverable Items folder in the primary mailbox is increased by 5 GB, raising it from 100 GB to 105 GB. Correspondingly, the Recoverable Items warning quota is increased from 90 GB to 95 GB.
• New guidance: Will an existing label be overridden or removed?

Data loss prevention

• In preview: Endpoint DLP Just-in-time protection applies a candidate policy to onboarded Windows 10/11 devices. The candidate policy blocks all egress activities on monitored files until policy evaluation completes successfully.

  • Endpoint DLP Just-in-time protection
  • Use Endpoint Just-in-time protection

• Generally available:

  • EDM Upload agent for double-byte character sets
  • Endpoint DLP support for virtualized environments
  • Support for evidence collection for file activities on devices

eDiscovery

• Updates collection limits for Export as a report.
• Updates for configuring and managing themes in eDiscovery.
• Updates for decryption limitations with email and attachments.
• Clarification for the preservation of item metadata in review set downloads.
• Clarification for searching Microsoft Teams meetings by date in eDiscovery.
• Updates for status details when closing or deleting cases in eDiscovery.
• Clarifications for date ranges and excluding partially indexed items.
• Clarification that date and time for all conversations in Microsoft Teams are shown in Coordinated Universal Time (UTC) in eDiscovery.
• Clarification when using PowerShell to include inactive mailboxes in content searches.

Information barriers

• Updates to the visibility of non-IB groups and users in SingleSegment and MultiSegment modes.

Insider risk management

• In preview: Fine-tune exclusions by creating detection groups and variants of built-in indicators.
• In preview: Update to remove the limitation on viewing and adding a SharePoint site. Customers can now see and add a SharePoint site to exclusions and priority content, even if they don't have permissions to access the site.
• Update: Guidance on how to increase number of alerts.
• Update: Guidance on tuning Adaptive Protection risk level settings.
• Update: Intune setup instructions for browser signal detection.
• Update to clarify that admins contained with a Microsoft Entra security group aren't supported for alert assignment.

Microsoft Priva

• General availability (GA): Delete type requests are now generally available in Priva Subject Rights Requests.
• In preview: New search and redact capabilities are available for data review for subject rights requests.
• Update: Alert frequency can now be modified for policies that have already been created.

Sensitivity labels

• General availability (GA): Built-in labeling support for Double Key Encryption (DKE) is now in general availability as a parity feature for the AIP add-in.
• General availability (GA): Support for administrative units.
• In preview: Rolling out in preview, Office documents are registered to support track and revoke document access as a parity feature for the AIP add-in.
• In preview: Rolling out in preview, support for end-user tracking and revocation as a parity feature for the AIP add-in. Owners of Office files that are registered for tracking and revocation can access the Microsoft Purview compliance portal from the Sensitivity menu to view user access attempts to the file, and revoke access if needed.
• In preview: Now extended to Current Channel for Windows, limited support for labels configured for user-defined permissions when files are stored in SharePoint or OneDrive.

Zero Trust

• New guidance: Implementing Zero Trust with Microsoft Purview

July 2023

Audit

• New notification concerning the retirement of Audit Classic Search.
• New: Addition of new operation search bar in the compliance portal.
• Updates to clarify the audit item lifetime limit. This is determined when it's added to the auditing pipeline and is based on the licensing defaults or applicable retention policies.
• Clarification on the support for the Search-MailboxAuditLog and Search-AdminAuditLog cmdlets.

Communication compliance

• Support for advanced sensitive info types: Communication compliance now supports four advanced sensitive information types: All credentials, All full names, All medical terms and conditions, and All physical addresses.
• New conditions: Use the following new conditions to monitor communications that cross the firewall:
  • Message is received from any of these external email addresses
  • Message isn't received from any of these external email addresses
  • Message is sent to any of these external email addresses
  • Message isn't sent to any of these external email addresses
• New Policy settings button: View policy settings without opening a policy.
• New Filter bar: Key filters (Body/Subject, Date, Sender, and Tags) are always displayed to make it easier to filter.

Data loss prevention

• Investigate data loss prevention alerts with Microsoft 365 Defender (new)
• Investigate data loss prevention alerts with Microsoft 365 Sentinel (new)
• Get started with oversharing popups (new)
• Configure endpoint data loss prevention settings (updated; major update to Endpoint DLP Windows 10/11 and macOS settings table; GA restricted app groups, autoquarantine, and business justification in policy tips)
• Support for Administrative Units in DLP policies
• Support for Previewing evidence via the compliance portal alerts page

eDiscovery

• Clarification about placing distribution lists on hold. When you select a distribution list to be placed on hold, the hold is placed on each of the member mailboxes in the distribution list when the policy is created. Subsequent changes in the distribution list do not change or update the holds or the policy.
• General availability (GA): Upgrading a case to eDiscovery (Premium).
• General availability (GA): Jobs report in eDiscovery (Premium).
• New: Improving on the default filters in previous versions, eDiscovery (Premium) now provides advanced filters that let you build more flexible and advanced filters for review sets.
• Clarification on the default options to select retrieval options in draft collections. These are configured on the global eDiscovery Settings > Collections page. Retrieval options selected on the Collections setting page are selected as the default retrieval settings for all collections.
• Updates to clarify recipient expansion searches. These searches may not return expected results when using an email alias or part of an alias. We recommend using the full UPN in these searches.

Insider risk management

• In preview: Bring your own detections (BYOD). Use the new BYOD detections feature to import third-party insider risk detections and create custom indicators.
• Save a view of a filter in the Activity explorer: If you create a filter and customize columns for the filter, save a view of your changes to quickly apply again later.
• Support for virtualized environments: Insider risk management now supports virtualized environments through endpoint DLP.
• General availability (GA):
  • Import physical badging data connector
  • Identify priority physical assets setting
• Additional templates for browser signal detection: Browser signal detection is now used for the Data theft by departing users, Data leaks, and Risky browser usage (preview) templates.
• Update for the maximum size of a priority user group.

Sensitivity labels

• General availability (GA): A Contextual Summary tab is added to auto-labeling policies that are in simulation. Similar to other solutions that support contextual summary, when you select an item to review for matched files on SharePoint or OneDrive, this new tab highlights the matched content and its surrounding context. Use this tab to confirm that the match is positive and therefore suitable to turn on the policy. Or, the match is negative, in which case you can fine-tune the policy and rerun simulation. Contextual summary isn't supported for emails.
• In preview: Now rolling out in preview, PDF support for auto-labeling policies, default sensitivity labels for SharePoint document libraries, and labeling activities in Office on the web that include manual labeling and displaying labeled documents, and encrypted PDFs that are now supported for DLP, eDiscovery, and search. You must opt-in for this PDF support.

June 2023

Communication compliance

• Update to note that for the Export option in detailed reports, the items and actions displayed are only for the items and actions matched during the date range included in the date range filter.

Compliance Manager

• Updated the regulations list page for the addition of a new template for Corporate Sustainability Reporting Directive (CSRD).
• Update to clarify that some automatically tested actions might show a status of "Out of scope" within the first 24 hours of setup with Microsoft Defender for Cloud monitoring.
• Update to reflect that the link to export an assessment report is now called "Export actions."

Data lifecycle management and records management

• General availability (GA): Auto-labeling retention policies for cloud attachments that are shared via Viva Engage are now in general availability.
• Rolling out: A default retention label for Outlook is always retained when an item is moved to the Deleted Items folder.

Data loss prevention

• General availability (GA): Oversharing Popup for Outlook Win32. Get started with oversharing pop ups and Business justification X-Header.

Insider risk management

• New Alert ID field and Case ID field: New static ID fields make it easier to search for alerts, and track and share alerts between admins.
• Assign an alert feature: Ability to assign an alert to a specific admin makes it easier for admins to prioritize and triage alerts.
• Update to clarify that there's no limit on the number of users for forensic evidence policies.

Microsoft Priva

• Updates to clarify that adding a collaborator automatically gives them a Privacy Management Contributors role, on Review data for a subject rights request and Set user permissions and assign roles.

Sensitivity labels

• General availability (GA): Now rolling out, Outlook for Android and Outlook for iOS support a setting for mandatory labeling that you can configure with Microsoft Intune to prompt users to select a sensitivity label when they first compose an email instead of when they send it.
• General availability (GA): Outlook for Android and Outlook for iOS, the sensitivity bar and label colors are now in general availability. For iOS, the release is still rolling out.
• In preview: Now rolling out in preview, OneDrive locations for auto-labeling policies are changing from sites specified by URLs to users and groups. This change of configuration means that administrative units are now supported for OneDrive auto-labeling policies. Any existing OneDrive sites specified in auto-labeling policies as site URLs will continue to work but before you can add more OneDrive locations, or for restricted admins, you must first delete any existing OneDrive sites specified as URLs. Groups supported: distribution groups, Microsoft 365 groups, mail-enabled security groups, and security groups.
• In preview: Now rolling out in preview, limited support for labels configured for user-defined permissions for Office on the web, SharePoint and OneDrive.
• In preview: The following new conditions are rolling out in preview for auto-labeling policies. Just the final new condition listed requires an advanced rule, and is applicable to OneDrive and SharePoint only. All the other new conditions are available in common rules:
  • Attachment or file extension is
  • Attachment or document name contains words or phrases
  • Attachment or document property is
  • Attachment or document size equals or is greater than
  • Document created by
• In preview: A Contextual Summary tab is added to auto-labeling policies that are in simulation. Similar to other solutions that support contextual summary, when you select an item to review for matched files on SharePoint or OneDrive, this new tab highlights the matched content and its surrounding context. Use this tab to confirm that the match is positive and therefore suitable to turn on the policy. Or, the match is negative, in which case you can fine-tune the policy and rerun simulation. Contextual summary isn't supported for emails.
• Removal of limitations for Teams when using sensitivity labels: Several previous limitations are removed for Teams protected meetings, which include Safari and Firefox support to prevent copy chat, support for virtual desktop infrastructure (VDI), policy settings for justification for changing a label, mandatory labeling, and a help link to a custom help page, and more methods are now supported to prevent copying chat.

May 2023

Audit

• Updates for audit log support for Microsoft Project for the web, Microsoft To Do,and Microsoft Defender Experts activities.
• Updates to clarify audit log retention policies and duration options.

Compliance Manager

• General availability (GA): New multicloud support for Compliance Manager.
  • New article: Multicloud support in Compliance Manager explains the new integration with Microsoft Defender for Cloud so you can assess your compliance posture across Microsoft 365, Microsoft Azure, Google Cloud Platform (GCP), and Amazon Web Services (AWS) with resource-level testing and cloud-specific guidance.
  • New article: Configure cloud settings for use with Compliance Manager details the setup process to receive multicloud support in Compliance Manager.
  • New article: Compliance Manager glossary of terms explains new and existing terms and concepts.
• General availability (GA): New configuration connectors for building assessments that cover non-Microsoft services.
  • New article: Working with connectors in Compliance Manager details how to set up and use connectors for building assessments for non-Microsoft services.
  • New article: Salesforce setup for Compliance Manager connector explains the seupt process for using the Salesforce connector.
  • New article: Zoom setup for Compliance Manager explains the setup process fo using the Zoom connector.
  • Update to Build and manage assessments about incorporating connectors for non-Microsoft services.
• Assigning user roles per regulatory template: New capability allowing you to provide scoped access to any assessment built for a specific regulation. Updated pages include:
  • Learn about regulations
  • Get started
  • Build and manage assessments

Data lifecycle management and records management

• General availability (GA): Simulation mode for auto-apply retention label policies is now generally available.
• General availability (GA): Auto-labeling retention policies for cloud attachments that are shared via Exchange or Teams are now generally available. Cloud attachments shared via Viva Engage remain in preview.

eDiscovery

• In preview: New article for guest access in eDiscovery (Premium). With guest access, you can provide access to an eDiscovery Premium case to people outside your organization. You can invite guests users to eDiscovery (Premium) cases just like you can invite guests into your Teams environment.
• In preview: New support for Export collected items and Export as report options for review sets in eDiscovery (Premium).
• In preview: New support for viewing job reports for eDiscovery (Premium). eDiscovery (Premium) now includes a jobs report tool that lists all jobs that count towards the jobs concurrency and daily limits in eDiscovery for a defined time period.
• Updates to clarify the indexing of non-custodial data sources in eDiscovery (Premium) cases.

Insider risk management

• In preview: Fine-tune policy indicator thresholds with real-time analytics to reduce alert noise.
• In preview: New Ignore email signature attachments setting reduces alert noise.
• Updates for forensic evidence billing.
• Updates for forensic evidence policy enforcement SLA: Get started with insider risk management forensic evidence.

Microsoft Priva

• Updates to Get started with Priva: insights for the data minimization policy begin surfacing within three days after starting Priva for data that hasn't been modified within the last 30 days.
• Updates to Find and visualize personal data in Priva for the privacy regulations card, which pulls in insights from Compliance Manager.

Sensitivity labels

• Rolling out: PDF support for Office on the web so that when Word, Excel, and PowerPoint convert a labeled Office document into a PDF document, the label with any content markings persists.
• In preview: Built-in labeling support for Double Key Encryption (DKE) is in preview as a parity feature for the AIP add-in.

April 2023

Audit

• Updates for audit log support for Microsoft Planner activities.

Communication compliance

• New content on the Filter email blasts feature and the Email blasts senders report.
• Updates to User-reported messages policy.
• New fields for Message Details reports.
• New conditions for Regulatory compliance policy template.
• New video: Learn how to detect communication risks in Microsoft Teams with communication compliance.

Compliance Manager

• Updated regulatory templates list with templates Turkey - Information and Communication Security Guide and SA - Saudi Arabia Monetary Authority (SAMA) & National Cybersecurity Authority (NCA).

Data lifecycle management and records management

• In preview: Scan for sensitive information in images with support for optical character recognition when you use auto-apply retention label policies.
• In preview: Auto-labeling retention policies for cloud attachments that were already in preview now include attachments and links shared in Viva Engage.
• In preview: Support for Microsoft Entra administrative units—for both data lifecycle management and records management—is starting to roll out.
• In preview: You can now optionally configure auto-approval when you configure a retention label for disposition review.

Data loss prevention

• In preview: Scan for sensitive information in images with support for optical character recognition.
• In preview: Save a copy of items that match DLP policies to Azure storage Learn about evidence collection for file activities on devices (preview) and Get started with collecting files that match data loss prevention policies from devices (preview).
• General availability (GA): Data loss prevention policies in Power BI to automatically detect sensitive information as it is being uploaded into Power BI and take immediate remediation actions. Learn about data loss prevention policies in Power BI).

eDiscovery

• New article: Configure review set grouping settings for eDiscovery (Premium) cases details how you can configure grouping settings for each Microsoft Purview eDiscovery (Premium) case to control how the data in a review set is grouped and displayed.
• In preview: New support for upgrading a eDiscovery (Standard) case to eDiscovery (Premium).
• In preview: New support for Microsoft Teams meeting recordings and transcripts.
• In preview: New support for the Export item report action for collections in eDiscovery (Premium).
• In preview: New support for using the new query builder to create search queries. The query builder option in collection search tool provides a visual filtering experience when you build search queries in Microsoft Purview eDiscovery (Premium).
• Updates to clarify the syntax for issuance and release hold notifications for multiple users and email fields.
• Updates for a new script to pull the FolderID from multiple mailboxes in a content search for targeted collections.
• Update for retry hold actions when custodians are placed on hold.
• Update for character and URL limits when searching SharePoint and OneDrive for Business locations.
• Clarification for the data retention for job information.
• Updates for requirements for decryption in eDiscovery.
• Article retired: the Change the size of PST files when exporting eDiscovery search results article has been retired.

Insider risk management

• In preview: Scan for sensitive information in images with support for optical character recognition.
• Updates to clarify the required enterprise apps needed to access eDiscovery (Premium) view, filter, and search features.
• Updates to include an example of remediating errors by uploading the extracted text.

Microsoft Priva

• General availability (GA): Recommended policy alert thresholds for more relevant and actionable alerts
• General availability (GA): Flexible boundary options when setting conditions for data transfer policies

Sensitivity labels

• General availability (GA): Default sensitivity label for a SharePoint document library
• General availability (GA): Outlook for Mac displays label colors
• General availability (GA): Rolling out to Current Channel as a parity feature for the AIP add-in, built-in labeling for Windows supports label inheritance from email attachments.
• General availability (GA): Apply S/MIME protection using Outlook on the web.
• In preview: Scan for sensitive information in images with support for optical character recognition when you use auto-labeling policies for Exchange.
• Change of version for AIP add-in disabled by default: For the Monthly Enterprise Channel only, the AIP add-in for Office apps is disabled by default in version 2303. For the Current Channel and Semi-Annual Enterprise Channel, the AIP add-in is still disabled by default in version 2302.
• Retirement notification for the AIP add-in for Office apps: The AIP add-in will retire April 2024. Although the add-in remains in maintenance mode until then, if you haven't already done so, we encourage you to migrate to the labels built into Office.