Introduction
Contoso Financial Services deployed Microsoft 365 Copilot across its finance and advisory teams. Analysts use Copilot daily to draft reports, summarize client files, and query internal data sources. The AI tools are working—productivity is up, and teams are moving faster. But the security team has a problem. The security team has no visibility into which sensitive data Copilot is surfacing. There's no visibility into which SharePoint sites are being used as AI grounding sources, or whether any interactions involve restricted client financial records.
The question isn't whether AI is being used. It's whether it's being used safely.
Microsoft Purview Data Security Posture Management (DSPM) for AI addresses this gap directly. It discovers how AI tools interact with your organizational data, identifies SharePoint content that is overexposed to AI grounding, and surfaces interaction risks from Copilot and other AI applications—all without requiring log exports or custom queries.
Learning objectives
In this module, you learn how to:
- Configure Microsoft Purview Data Security Posture Management (DSPM) for AI
- Assess SharePoint data overexposure risks that affect AI grounding data
- Identify sensitive data risks in Copilot and AI application interactions
- Interpret DSPM for AI dashboards and prioritize remediation actions
Prerequisites
Before you begin, you should have:
- Familiarity with Microsoft Purview portal navigation
- Basic understanding of data security and posture management concepts
- Awareness of Microsoft 365 Copilot and AI application data access patterns