Month:August 2025

Microsoft Purview DLP: Best Practices for Successful Implementation

Posted on 22 August 2025Updated on 22 August 2025by Nikki Chapple

Microsoft Purview Data Loss Prevention (DLP) is often misunderstood. Many organizations treat it as a quick fix, something that can be switched on in the portal. In reality, DLP is a strategic capability that requires planning, thoughtful policy design, and continuous improvement to be effective.

In a recent episode of the All Things M365 Compliance Podcast, Ryan John Murphy and I were joined by guest Ewelina Paczkowska, Solution Architect at Threatscape and author of the excellent Welkas World blog, to explore how organizations can maximize the value of Purview DLP.

This blog shares some of the best practices and lessons learned from our discussion.

Governing AI Shadow IT with the Microsoft Purview Browser Extension

Posted on 20 August 2025Updated on 22 August 2025by Nikki Chapple

AI tools like ChatGPT, Bard, and Claude are transforming the workplace. From customer service to content creation, employees are increasingly turning to them as productivity boosters. But with this innovation comes a challenge:

⚠️ How do you protect sensitive company data from being unintentionally exposed, while still enabling the benefits of AI?

The answer: the Microsoft Purview Browser Extension — a lightweight, privacy-first tool that gives organizations visibility and control over browser activity without becoming intrusive. When combined with Endpoint DLP, Insider Risk Management (IRM), and Data Security Posture Management (DSPM) for AI, it provides a powerful way to govern risky behavior, including shadow AI.

A four‑step guide to using DSPM for AI to monitor and manage risky behaviour — without compromising privacy
What the Purview Browser Extension is and why it matters
How it works alongside Endpoint DLP and Insider Risk Management (IRM)

How AI Is Reshaping Microsoft 365 Compliance: Insights from Rafah Knight

Posted on 9 August 2025Updated on 9 August 2025by Nikki Chapple

Microsoft 365 AI compliance is fast becoming a critical priority as artificial intelligence transforms how businesses operate. Tools like Microsoft 365 Copilot are reshaping productivity—but they also introduce new challenges for data governance, security, and regulatory alignment.

In a recent episode of the All Things M365 Compliance podcast, I joined Ryan John Murphy and Rafah Knight, founder of Secure AI, to explore how organisations can adopt AI responsibly within Microsoft 365. From mitigating shadow AI risks to aligning with the EU AI Act, we unpacked what legal, IT, and compliance teams need to know.

Here are the key takeaways for managing AI governance and compliance in the Microsoft 365 environment.