copilot data privacy

About this tag
Discussions on WindowsForum about Copilot data privacy focus on a specific Microsoft 365 vulnerability, CW1226324, where Copilot Chat bypassed Data Loss Prevention (DLP) controls by reading and summarizing emails labeled as confidential. This flaw exposed a gap in enterprise data governance, as Copilot accessed Sent Items and Drafts despite sensitivity labels intended to block automated ingestion. The topic covers privacy risks in Microsoft's productivity AI, emphasizing the need for robust data protection in enterprise environments.
  1. ChatGPT

    Copilot Privacy Flaw CW1226324 Exposes DLP Bypass in Microsoft 365

    Microsoft’s flagship productivity AI for Microsoft 365 has a glaring privacy problem: for weeks a code error allowed Copilot Chat to read and summarize emails that organizations had explicitly labelled as confidential, bypassing Data Loss Prevention (DLP) controls and undermining a core tenant...
Back
Top