dlp sensitivity labels

About this tag
Discussions on WindowsForum.com about DLP sensitivity labels focus on a specific Microsoft 365 Copilot privacy flaw (CW1226324) where Copilot Chat bypassed Data Loss Prevention controls by reading and summarizing emails carrying sensitivity labels marked as confidential. This issue exposed a gap in enterprise data governance, as sensitivity labels intended to block automated ingestion were ignored by Copilot's work tab conversation feature, pulling messages from Sent Items and Drafts. The topic highlights real-world challenges in enforcing DLP policies with AI tools in Microsoft 365 environments.
  1. Copilot Privacy Flaw CW1226324 Exposes DLP Bypass in Microsoft 365

    Microsoft’s flagship productivity AI for Microsoft 365 has a glaring privacy problem: for weeks a code error allowed Copilot Chat to read and summarize emails that organizations had explicitly labelled as confidential, bypassing Data Loss Prevention (DLP) controls and undermining a core tenant...