Skip to content

Data security & Purview

Copilot, safe with your data

Yes, Microsoft 365 Copilot is safe with your data — provided your data protection is in order. Every prompt runs in your security context, so Copilot only cites what you may already access.

The starting point

Copilot inherits your rights

Copilot adds no access layer of its own. Every prompt runs in the security context of the requesting user — Copilot only sees what that person may already see and leans entirely on existing SharePoint, OneDrive and Exchange permissions. If you want to know how Microsoft Copilot works, then data security does not start with Copilot, but with who may access what.

The protection model

Four layers between question and answer

On top of your existing rights, four Microsoft Purview mechanisms go to work. Together they form a gate that every question passes before an answer arrives.

Question

Your prompt

You ask a question inside your own security context.

Layer 1

Sensitivity label

Classifies and encrypts content; helps decide whether Copilot may use it.

Layer 2

DLP for Copilot

Keeps labelled files and sensitive information out of the grounding.

Layer 3

Rights & grounding gate

Checks EXTRACT/VIEW usage rights and SharePoint permissions before retrieval.

Layer 4

Copilot response

Inherits the highest label from the sources — protection travels with it.

Safe answer — protection travels with it

The mechanisms

Four protection layers

Each layer does one thing well. Together they keep sensitive data out of the wrong answers.

Sensitivity labels

Classify and encrypt. EXTRACT and VIEW rights decide whether Copilot may read.

DLP for Copilot

Keeps labelled files out of the summary. Citation stays visible, content does not.

Rights inheritance

Copilot runs in your security context — never broader than your own rights.

Oversharing remediation

Restricted SharePoint Search limits Copilot to a list of verified sites.

Our conviction

Copilot does not leak — oversharing does.

The real risk

Oversharing, not Copilot

Permissions set too broadly suddenly become easy for Copilot to find. So the real work sits in cleaning up permissions — before and during the rollout. We start with a readiness scan and anchor the whole thing in your governance.

  • Restricted SharePoint Search

    Limit Copilot to a curated list of verified sites — time to audit permissions.

  • Restricted Content Discovery

    Quickly block specific overshared sites for Copilot and agents, without halting the rollout.

  • SharePoint Advanced Management

    Data access governance reports surface sites with overshared or sensitive content.

  • Lifecycle & sharing policies

    Reduce oversharing over the long term; site owners help watch over it, delegated.

Allowed-list

How Restricted SharePoint Search works: only verified sites in organisation-wide search and Copilot results.

Our approach

From risk to protection

Consultancy, advice and development — we map the gaps and set up the protection layers.

  1. 1

    Scan

    We map oversharing and permission risks with a readiness scan.

  2. 2

    Advice & design

    We design label taxonomy, DLP rules and SharePoint controls around your risk profile.

  3. 3

    Implementation

    We set up the protection layers step by step — rollout continues during cleanup.

  4. 4

    Monitoring

    We keep labels, DLP and permissions healthy with ongoing monitoring and tuning.

FAQ

Veelgestelde vragen

On data security, Purview and oversharing.

Is Microsoft Copilot safe with our company data?

Yes, provided your data protection is sound. Copilot works within the Microsoft 365 service boundary and adds no access layer. Every prompt runs in your security context: Copilot only sees what you may already see.

Can Copilot show files I have no access to?

No. Copilot inherits your existing rights and can only summarise or cite content you are authorised for. The real risk is existing oversharing: permissions set too broadly suddenly become easy to find.

What exactly do sensitivity labels do with Copilot?

Labels classify and encrypt content. With encryption, the user needs EXTRACT and VIEW usage rights before Copilot processes the content. Generated output automatically inherits the highest label from the sources.

How does DLP keep sensitive data out of Copilot responses?

A DLP policy on the Copilot location keeps labelled files out of the summary. The item stays visible in the citations, but the content is not processed. Sensitive information types in prompts can also be blocked.

How do you tackle oversharing before the Copilot rollout?

Restricted SharePoint Search limits search and Copilot results to a verified list of sites. SharePoint Advanced Management surfaces overshared sites. So the rollout continues while you clean up permissions.

Which Microsoft licence do I need for these controls?

The data protection mechanisms around Copilot rely on Microsoft Purview and SharePoint Advanced Management, with differences between E3 and E5 tiers. In an advisory call we determine which combination fits your situation. Ask us via /en/contact.

Want to know where your data gaps are?

Our readiness scan maps oversharing and permission risks — with a concrete advisory report for your protection layers.