What's new in Microsoft Purview

Whether it's adding new solutions, updating existing features based on your feedback, or rolling out fresh and updated documentation, Microsoft Purview helps you stay on top of the ever-changing data governance, data security, and risk and compliance areas. Take a look at the following information to see what's new in Microsoft Purview.

What's planned for Microsoft Purview

Microsoft Purview continues to add new solutions and features to help with data governance, data security, and risk and compliance in your organization. Check out the following roadmap sites to learn more about what's planned for Microsoft Purview:

• Roadmap for data governance solutions.
• Roadmap for data security and risk and compliance solutions.

March 2026

Data Security Investigations

• New: Categorization now includes a Standard and Advanced option. Standard categorization can significantly reduce the time it takes to complete processing and the amount of Data Security Investigation Compute Units (compute unit) needed for categorization.

Insider Risk Management

• In preview: Disable content download to create cases without content to reduce triage time. To get started, see Enable or disable content download.

Sensitivity labels

• General availability (GA): Manual labeling for OneNote, supported at the section level. Because retention labels also support labeling at the section level, you might find it helpful to review the architecture diagram for retention policies and retention labels. To enable the support for sensitivity labels, SharePoint and OneDrive must already be enabled for sensitivity labels, and then run the following PowerShell command: Set-SPOTenant -EnableSensitivityLabelforOneNote $true

February 2026

Data Governance

• In preview: Microsoft Purview Data Quality supports incremental data quality scans by using time-based filtering. By using incremental scans, you can choose between full scans, incremental scans, or both when you run data quality rules on data assets.

• In preview: Data quality scans for standalone data assets enable organizations to measure and improve data quality immediately without associating a data asset to a data product, significantly speeding up governance adoption. By running scans on assets, organizations can decide whether to associate a data asset to a data product if the data asset is in poor quality.

• General availability (GA): Azure SQL Managed Instance support (SQL MI) is now generally available. You can now measure, understand, and improve the quality of your data in your SQL MI. Both public network and private endpoint configurations are supported. To get started, create a connection similar to Azure SQL database with supported port number, and assess the quality of your data using the Microsoft Purview Data Quality scanner.

Developers

• Microsoft Purview enables software development companies to integrate governance, protection, and compliance capabilities into their applications using SDKs and APIs. A new list of partner integrations is now available, with links to partner documentation. For more information, see Software Developer Partner Integrations.

Insider Risk Management

• In preview: Microsoft Fabric indicators now include Lakehouse indicators.
• In preview: A new quick policy template for detecting data theft from non-Microsoft 365 apps by users leaving your organization is now available.

Sensitivity labels

• New: The client-side improvements for sensitivity labels that extend SharePoint permissions to downloaded documents that started to roll out to Windows version 2601+ in January for the Current Channel is complete, and now also available with the Monthly Enterprise Channel.

January 2026

Adaptive scopes

• New: As an alternative, or to supplement the Export option to download a list of scope members, run the PowerShell cmdlet Get-AdaptiveScopeMembers. This cmdlet is helpful when the scope membership is large (1,000 or more), or you want to customize the export.

Copilot Agents in Purview

• In Preview: Get started with Microsoft Purview Posture Agent in Data Security Posture Management.

Data Governance

• In preview: Now available, Azure SQL Managed Instance support allows you to measure, understand, and improve the data quality of your data in Azure SQL Managed Instance. Both public network and private endpoint configurations are supported. To get started, create a connection similar to Azure SQL database with supported port number, and assess the quality of your data using the Microsoft Purview Data Quality scanner.
• In preview: Now rolling out in preview, when a data asset is deleted from Data Map, a notice displays in your data products and critical data elements that associated data assets or columns have been deleted, so that you can remove the deleted assets or columns from your view.
• General availability (GA): Multiregion configuration and virtual network support to store data quality error records locally where your data is located is generally available. Organizations can configure multiple folder locations—for example, one folder for sensitive data and another for nonsensitive data—to store data quality error records for analysis and remediation.
• In preview: Authoring custom rules using SQL expression language is now in preview. Users can create custom rules using both Azure Data Factory expression and SQL expression languages.
• General availability (GA): Virtual network support for self-service analytics metadata storage is now generally available.
• General availability (GA): Workflows for data product access management and publication of data products and glossary terms is now generally available.

Data Loss Prevention

• GA release: Restructured the Microsoft Purview Data Loss Prevention table of contents to better support customer scenarios of protecting enterprise data, enterprise data on devices and, inline data. Learn about data loss prevention

Data Security Investigations

• In preview: New Data Security Investigation Compute Units (compute units) have replaced Security Compute Units (SCUs) for AI capacity billing in Data Security Investigations.

Data Security Posture Management (preview)

• New: Asset explorer now has an Agent tab for the new Data Security Posture Agent from Security Copilot. Use this tab to activate, configure, and use this agent exclusively in this version of DSPM. The agent uses natural‑language search and doesn't rely on keywords, sensitive information types, or classifiers to search across files in SharePoint and OneDrive, messages in Teams, emails in Exchange, and interactions with Copilot. For more information, see the following new documentation:
  • Get started with the Microsoft Purview Posture Agent in Data Security Posture Management
  • Using the Data Security Posture Agent

Sensitivity labels

• General availability (GA): Gradually rolling out in general availability, migration of parent sensitivity labels to label groups. During the initial rollout phase, tenants that don't have applicable parent labels will be automatically migrated to the new label scheme. If your tenant has the new label scheme, you see a green message bar on the Sensitivity labels page that confirms your tenant is successfully migrated to the modern label scheme, which provides more flexibility in organization and reduced complexity. There are no visible changes for users.
• New: Client-side improvements for sensitivity labels that extend SharePoint permissions to downloaded documents. Includes support for the Save As option with the minimum versions:
  • Windows: Rolling out to Current Channel (Preview)
  • macOS: Version 16.103+
  • iOS: Version 2.103+
  • Android: Version 16.0.19426+

December 2025

This month includes information about releases and updates that were announced and covered at Microsoft Ignite.

Agent 365

• In preview: Rolling out in preview, data security and compliance protections for Microsoft Agent 365.

Compliance Manager

• New: Compliance Manager now integrates with Azure AI Foundry to automate compliance evaluations for AI models and agents. This feature syncs evaluation results directly from AI Foundry, reducing manual effort and improving alignment with key AI regulations.

Data Governance

• In preview: Data Quality REST API for general availability (GA) features in Unified Catalog is now in preview. Users can use programmatic APIs to configure and run data quality of their data assets programmatically (supported scenarios: connection creation, rule creation, data quality job scheduling, data profiling, running data quality scans and consuming the scores).
• General availability (GA): Microsoft Purview Unified Catalog metadata self-service analytics capability is now generally available.
• In preview: Unified Catalog supports the creation of custom data quality rules using SQL expression language, and by using Azure Data Factory expression language.
• Updated: Multiregion configuration is available to store data quality error records locally where your data is located. Organizations can configure multiple location folders to store data quality error records in alignment with data residency compliance requirements.
• In preview: Get started with virtual network support for self-service analytics metadata storage, now in preview.
• Updated: Custom rules column ID and column name are added to Data Quality Asset Rule Execution table in self-service Analytics domain model.
• Updated: Data quality scan consumption data (processing units) is available in both Microsoft Azure Data Lake Storage Gen2 and Fabric Lakehouse for self-service analytics. If you're using Unified Catalog self-service analytics, view data quality processing unit usage in the DataQualityJobExecution table. The PuDetail column contains the processing unit consumption details for each data quality scan and profiling job.

Data Security Investigations

• General availability (GA): Support for data risk graphs in Data Security Investigations. Data risk graphs in Data Security Investigations helps you visualize correlations between impacted data, users, and their activities. It provides critical context to guide security incident mitigation and next steps.
• In preview: Use the new Pay-as-you-go usage dashboard to quickly view and track data storage and compute usage for each investigation in your organization.

Data Security Posture Management (preview)

• In preview: Now rolling out in preview, the new version of Data Security Posture Management (DSPM) that brings together the previous versions—now named DSPM (classic) and DSPM for AI (classic)—with enhancements that include:

  • Outcome-based guided workflows: Choose a data security objective and see related metrics, risk patterns, with a recommended remediation plan and its impact.
  • Posture reports: Uncover data protection gaps and track security posture improvements with new reports that provide context for sensitivity label usage, auto-labeling effectiveness, posture drift through label transitions, and DLP policy activities.
  • AI observability: Surface your organization’s agent inventory with assigned agent risk level and agent posture metrics that are based on agentic interactions. Includes support for the preview of Microsoft Agent 365.
  • New Security Copilot agents: Accelerate the discovery and analysis of sensitive data to uncover hidden risks across files, emails, and messages.
  • Data Security Investigations integration: View proactive, summary insights and start a data security investigation directly from DSPM.
  • Item-level remediation for oversharing: Recently introduced in DSPM for AI, remediate potentially overshared files in SharePoint with custom data risk assessments and item-level scanning.

eDiscovery

• New: In an eDiscovery case, you can add multiple data sources to a case by adding a list of SMTP addresses or URLs.

Insider Risk Management

• General availability (GA): Support for data risk graphs in Insider Risk Management. Data risk graph in Insider Risk Management uniquely visualizes correlations between impacted data, users, and their activities. It provides critical context to guide alert mitigation and next steps.
• General availability (GA): A Microsoft Security Copilot Agent for Insider Risk Management. The Triage Agent in Insider Risk Management provides an agent-managed alert queue where the alerts about the highest risk activities are identified and prioritized on the Triage Agent dashboard. For more information, see Security Copilot Agents in Microsoft Purview Overview (preview).
• In preview: The Triage Agent in Insider Risk Management supports feedback on incorrect alert categorizations.

Sensitivity labels

• New: Auto-labeling policies support nested rule logic (AND/OR/NOT conditions), which brings parity with DLP policy configuration. Auto-labeling settings for a sensitivity label continue to support simple AND/OR conditions only.

November 2025

This month includes information about releases and updates that were announced and covered at Microsoft Ignite.

Data Governance

• General availablity (GA): Unified Catalog is now generally available in the West Central US region; see all supported regions.
• Updated: Sensitivity labels can now be applied to 11 more Data Map data sources: Azure Cosmos DB for SQL API, Azure Data Explorer, Azure Database for MySQL, Azure Database for PostgreSQL, Azure Databricks Unity Catalog, Azure SQL Managed Instance, Azure Synapse Analytics (Workspace), Snowflake, SQL Server, Amazon S3, Microsoft Dataverse.
• In preview: Create workflows within Unified Catalog to automate the process of granting access to data products, and for publishing data products and glossary terms.

Data Loss Prevention

• Updated: Get started with Endpoint Data Loss Prevention Just-In-Time file protection.
• In preview: Get started with data loss prevention protections for Recall helps protect against sensitive content being included in Recall snapshots on Copilot+ PCs.
• In preview: For Ignite Block sensitive information types in prompts provides the ability to block specific sensitive information types from being used in prompts to Microsoft 365 Copilot and Copilot Chat. When a user attempts to use sensitive information types that are blocked by the DLP policy, they will receive a notification informing them that the prompt cannot be completed.
• General availability (GA): For Ignite Block files and emails with sensitivity labels from being used in response summaries is released to general availability.
• In preview: Use Network Data Security to help prevent sharing sensitive information with unmanaged AI. You can enforce DLP protections on network traffic for Microsoft Entra GSA Internet Access to help prevent users from sharing sensitive information with unmanaged AI apps (files only).
• general availability: Learn about Microsoft Purview Network Data Security for third-party SASE network security solutions.

Data Security Posture Management for AI

• In preview: To help you more confidently adopt Microsoft 365 Copilot, custom data risk assessments now include item-level scanning with remediation for potentially overshared files in SharePoint.

Data Security Investigations

• In preview: Use Search with AI (preview) to ask natural language questions or enter keywords with a specific focus to narrow down items for review. AI Search supplements vector search and extends AI capabilities when analyzing your data.
• New: Data Security Investigations now uses Data Security Investigation Compute Units as dedicated AI processing for billing to support investigaitons. Secure Compute Units (SCUs) are no longer used in Data Security Investigations.

Data Lifecycle Management

• General availability (GA): Priority cleanup support for SharePoint and OneDrive.

Insider Risk Management

• In preview: Pay-as-you-go usage reports provide transparency and enable more accurate budget planning and policy tuning.
• In preview: Risky Agents policy template is available in Insider Risk Management to detect activities of agents hosted on Microsoft Copilot Studio and Microsoft Foundry.

Purview

• In preview: Manage pay-as-you-go and per-user licensing usage - TheUsage center lets you see your pay-as-you-go billing usage for Microsoft Purview capabilities, as well as your per-user licensing usage. You can drill down to specific policies, workloads and features and toggle pay-as-you-go on/pause. The Premium usage report shows you the number of seats that are protected by Microsoft Purview policies but unlicenses and licensed but unprotected empowering you to optimize your licensing usage.

Purview Reports

• In preview: Microsoft Purview Posture Reports overview has added three new posture reports in Microsoft Purview Information Protection, three new posture reports in Microsoft Purview Data Loss Prevention.

Security Copilot Agents in Purview

• New: Get started with the Microsoft Purview Triage Agent in Data Loss Prevention (preview) to include new configuration flow and feedback functionality as a stand alone article.

Sensitivity labels

• New: RAG-based Foundry apps and agents built with AI search as the knowledge retrieval service can honor sensitivity labels the same way as Microsoft 365 Copilot does. For encrypted items, a user must have the EXTRACT usage right, as well as VIEW, for these items to be returned in search results.
• General availability (GA): SharePoint document libraries can be configured for a sensitivity label to extend permissions to downloaded documents, and protect files from being copied or moved. For more information, see Configure SharePoint with a sensitivity label to extend permissions to downloaded documents. Microsoft 365 Copilot can access unopened files that are labeled with this configuration.

October 2025

Data Governance

• In preview: Unified Catalog API for general availability (GA) features in Unified Catalog.
• General availability (GA): Data quality error record publishing to your cloud storage is now generally available in all supported Azure regions. Data engineers, data quality stewards, and analysts can review and correct data, as well as monitor continuous improvements by creating dashboards with Unified Catalog metadata and Data quality error records for their data governance and data quality teams. This feature helps Microsoft Purview Unified Catalog users not only measure and monitor data quality, but also improve it by enabling them to correct data quality error records and handle rule exceptions.
• In preview: A new table named Critical Data Column is added to self-service analytics. Users will able to report glossary terms or any other concepts associated to data asset column using the Critical Data Column and Relationship tables.

Data Lifecycle Management

• New: Rolling out, migrating the retention of Teams private channel messages from the Teams private channel messages location to the Teams channel messages location in a retention policy. In line with the Microsoft Teams change that enhances private channels in Microsoft Teams to unlock their full potential, private channel messages are stored in group mailboxes rather than user mailboxes. When your tenant is migrated, select the Teams channel messages location in the retention policy configuration to retain or delete these messages.

Data Loss Prevention

• In preview: User and rule based alert aggregation provides greater flexibility and control over how DLP alerts are grouped and presented. Alerts can be generated per event, or per user, or single aggregate alerts for multiple users and multiple events, or based on the volume of data. The generation of alerts on a user + rule , aggregated over multiple time windows helps reduce alert noise and allows you to view your alert data in new ways.

Data Security Investigations

• New: Search relevance scores are now available to help you determine the connection strength between your vector search and the results.
• New: Use the Additional context for AI (preview) option when creating a new investigation (or to existing investigations) to help focus the categorization and risk examination results to specific area or issues.

eDiscovery

• Consolidated document metadata reference: New updates and consolidation of all document metadata fields supported by eDiscovery into a single reference article. Documents support for document fields included in the items.csv file for exports from direct search, when adding search results to a review set, and when exporting items from a review set.
• Use Microsoft Purview APIs for eDiscovery: New article that provides guidance on how to configure the required prerequisites to enable access to the Microsoft Purview APIs for eDiscovery. This guidance is based on using app-only access to the APIs, with either a client secret or a self-signed certificate to authenticate the requests.

Insider Risk Management

• In preview: Content explorer has new filtering and view management tools.

Sensitivity labels

• New: Tenants that are created beginning October 1, 2025 will automatically use the new label scheme that previously, was available only to customers who migrated their parent sensitivity labels to label groups. If your tenant has the new label scheme, you see a green message bar on the Sensitivity labels page that confirms your tenant is successfully migrated to the modern label scheme, which provides more flexibility in organization and reduced complexity.
• General availability (GA): Support for cross-cloud access to encrypted documents with Microsoft Entra configuration. As a result, users who are part of an organization in another cloud environment can open Word, Excel, and PowerPoint files that are encrypted by your organization. For example, these users might be in Microsoft Azure Government, or Microsoft Azure operated by 21Vianet.