Delen via


Data loss prevention policy tips reference

Tip

Get started with Microsoft Copilot for Security to explore new ways to work smarter and faster using the power of AI. Learn more about Microsoft Copilot for Security in Microsoft Purview.

Data loss prevention on endpoint devices supports policy tips for only some sensitive information types

These sensitive information types (SIT)s can be detected on endpoint devices:

Custom sensitive information types will also be detected in addition to the above out-of-the-box sensitive information types.

Support Matrix for DLP policy tips across Microsoft apps

App and platform DLP policy tip support Sensitive information types supported Conditions and actions supported Comments
Outlook On the Web Subset. See Sensitive information types that support policy tips in Outlook on the Web Subset. See Conditions that support policy tips in Outlook on the Web and Actions that support policy tips in Outlook on the Web For full details, see Data loss prevention policy tip reference for Outlook on the Web
Outlook for Microsoft 365 (ver. 2105 build 14026.20000 and semi-annual channel ver. 2102 build 13801.20862) Varies by version and license. See Data loss prevention policy tip reference for Outlook for Microsoft 365 Subset.See Data loss prevention policy tip reference for Outlook for Microsoft 365 For full details, see Data loss prevention policy tip reference for Outlook for Microsoft 365
Outlook Mobile (iOS, Android)/Outlook Mac None None DLP policy tips aren't supported on Outlook mobile
Outlook Mac None None DLP policy tips are not supported on Outlook for Mac
SharePoint/OneDrive Web client All. All. See Data loss prevention policy tip reference for SharePoint and OneDrive web client
SharePoint Win32/ OneDrive Win32 client None None DLP policy tips aren't supported on SharePoint or OneDrive desktop client apps
Word, Excel, PowerPoint Web Client All All SPO/ODB predicates and actions in DLP DLP policy tip s are supported if the document is hosted on SharePoint or the OneDrive web app and the DLP policy is already stamped.
Word, Excel, PowerPoint Mobile Client None None DLP policy tips aren't supported in mobile apps for Office.
Teams Web/ Teams Desktop/ Teams Mobile/ Teams Mac All All Teams predicates in DLP policy Policy tips will show when a message is flagged as “This message has been flagged. What can I do?” When clicking the link, the user can review the sensitive info types detected and override or report an issue if allowed by the admin. No policy tips are shown for files. When the recipient tries to access the document, they might get access denied if not allowed.
Win32 Endpoint Devices Subset All Endpoint DLP predicates and actions in DLP policy For more information, see Data Loss Prevention on Endpoint supports policy tips for only some sensitive information types
macOS devices All DLP policy tips are supported for all actions that are supported for macOS. For more information, see Endpoint DLP Windows 10/11 and macOS settings
3rd party cloud apps None None DLP policy tips aren't supported on third party cloud apps
On-prem None None
Word, Excel, PowerPoint Win32 Client Subset Subset See Data loss prevention policy tip reference for Outlook for Microsoft 365 for the list of sensitive information types supported

Policy tips for WXP client apps will work for documents stored on SharePoint or OneDrive Sites for all DLP policies that have exactly the below or a subset of conditions or actions in the DLP policy:
  • Content contains sensitive information types
  • Access Scope (Content is shared internally/externally)
  • Notify User (policy tips/user notifications)
  • Block everyone
  • Incident reports

If any other condition or action is present, the DLP policy tip for that policy won't appear in the desktop apps of Word, Excel or PowerPoint.
See Policy tips in Excel, PowerPoint, and Word for more details
Fabric and Power BI Subset Subset Data loss prevention policies in Power BI and Fabric are in Public Preview.

Policy tips and admin alerts are supported.