Regaining Control Over Unmanaged GenAI Apps: New Microsoft Purview Enhancements in Edge

Many organizations are growing increasingly concerned about the widespread use of unsanctioned Generative AI (GenAI) tools. These apps, often accessed through unmanaged browsers, pose significant risks to data security and compliance. To help with this, Microsoft is now updating some features in  Microsoft Purview that will enhance policy enforcement for unmanaged cloud apps accessed via the Edge browser.  What’s Changing? Previously, enforcing Purview Data Loss Prevention (DLP) and Collection policies required manual creation of Edge configuration policies. These policies were often complex and needed to be scoped correctly to block unsupported browsers or apply protections. With this update, Microsoft automates much of that process: Collection Policies now apply directly within Edge without needing a separate blocking configuration. DLP Policies automatically generate Edge configuration policies that align with the scope of the DLP rules. DLP policies can operate in two mode...

New Microsoft Loop workspace policy coming: Require Existing Microsoft 365 Group for New Loop workspaces

Microsoft is improving the security of Loop workspaces by giving admins the capability to connect new workspaces into existing Microsoft 365 Groups. This change will allow end-users to choose existing groups for managing new workspaces, providing a structured environment for collaboration. While this integration supports governance, it may challenge scenarios like automatic aggregation of Teams meeting content into a Loop workspace or creating short-term project workspaces. I recommend reading the following post on how aggregating teams meeting into loop workspaces works.

If organizations have separate workflows for creating and govern Microsoft 365 groups, now would be the time to look into them and see if they need to be updated to include Loop Workspaces (or allowing to add workspaces)

This update is currently planned to be complete by the end of April 2025 but keep an eye on Microsoft 365 Roadmap ID 422725 for changes.