Microsoft Purview

At a glance

Microsoft Purview is the umbrella brand under which Microsoft sells its data security, data governance, and data compliance products. The brand was created in April 2022 by combining the former Azure Purview with the Microsoft 365 Compliance product family. It now covers more than a dozen distinct products including Information Protection, Data Loss Prevention, Insider Risk Management, eDiscovery, Compliance Manager, Data Lifecycle Management, the unified Data Map and Catalog, and — as of late 2024 — a dedicated Data Security Posture Management solution and a separate Data Security Posture Management for AI.

Sold primarily through Microsoft 365 E5 licensing and through pay-as-you-go consumption pricing for the data governance components, with capabilities also unlocked at Business Premium and E3 tiers in more limited form. Microsoft is publicly listed on NASDAQ (MSFT). Rudra Mitra is the Corporate Vice President responsible for the data security, governance and compliance portfolio.

What Microsoft Purview actually is

Microsoft Purview is best understood not as a product, but as a portfolio brand stretched across products of very different ages, very different maturity levels, and originally very different purposes. Buyers who treat "Microsoft Purview" as a single capability set — as Microsoft's own marketing collateral encourages — will be repeatedly surprised, both pleasantly and unpleasantly, once they begin implementation.

The portfolio splits cleanly into three layers. The first is the information protection and DLP heritage — sensitivity labels, automatic and manual classification, content-aware DLP across endpoint, email, web, Teams, and increasingly Microsoft 365 Copilot prompts. This layer is mature, deeply integrated with the Microsoft 365 and Office client experience, and represents fifteen-plus years of accumulated engineering investment under earlier names including Azure Information Protection and Microsoft Information Protection.

The second layer is the compliance and risk management heritage — Insider Risk Management, Communication Compliance, eDiscovery, Compliance Manager, Data Lifecycle Management, Records Management, and the audit log. These products are functional and frequently the deciding reason a large enterprise standardises on Purview.

The third layer is the new posture management and AI security capabilities shipped predominantly between 2023 and 2025 — the unified Data Map, the Data Catalog, DSPM (classic and preview), DSPM for AI, the Data Security Posture Agent on Security Copilot, and DLP for Microsoft 365 Copilot prompts (general availability announced at Ignite 2025).

The result is a vendor that is neither the data security leader its strongest evangelists describe nor the marketing wrapper its harshest critics dismiss it as.

Purview has the deepest integration into the Microsoft 365 estate of any data security vendor on the planet — which is both its primary strength and the source of most of its limitations.

Capability assessment

Microsoft Purview scores 71 / 100 on capability strength. The score reflects strong performance in the criteria most aligned with Microsoft's Microsoft 365 and Azure heritage, adequate performance in the criteria where Purview competes against pure-play data security vendors, and weak performance in the criteria that require coverage outside the Microsoft estate.

Strongest capabilities

Sensitivity labels with cryptographic rights management (Azure Rights Management) are the strongest persistent-protection capability in the data security category, originally inherited from Azure Information Protection and now extensively integrated. Labels travel with files outside the organisation; encryption and access controls are enforced by Microsoft's identity stack rather than network controls. No competitor matches this for documents in the Microsoft 365 ecosystem.

Evidence: Microsoft Learn sensitivity label documentation; Forrester Wave Q1 2025 cited Microsoft as highest possible in rights management.

The unified audit log captures activity across every Microsoft 365 service with high granularity. Purview Audit, particularly at the E5 tier, retains audit data for up to ten years, supports custom search across hundreds of activity types, and now feeds AI-specific activity (Copilot prompts and responses, agent invocations) into the same unified event store.

Evidence: Microsoft Learn unified audit log documentation; E5 vs E3 audit feature comparison.

Compliance Manager provides regulator-mapped control templates for more than 350 frameworks including GDPR, HIPAA, PCI-DSS, SOX, ISO 27001, NIST 800-53, APRA CPS 234, and the EU AI Act. The recently added AI regulations templates are unique among data security vendors. For organisations whose primary buying motivation is regulatory evidence, no other vendor in the category competes.

Evidence: Microsoft Learn Compliance Manager documentation; regulatory template inventory.

Adequate capabilities

Endpoint, email, web, and Teams DLP are mature and integrate cleanly with the classification engine. The Ignite 2025 GA of DLP for Microsoft 365 Copilot prompts is a meaningful addition. The weakness is operational: Purview DLP is widely reported as noisy out of the box, requires significant policy tuning, and the troubleshooting tooling lags the policy authoring tooling. Forrester's Q1 2025 customer feedback cited "tuning to reduce the noise from alerts is cumbersome."

Evidence: Microsoft Tech Community DLP for Copilot GA announcement, Ignite 2025; Forrester Wave Q1 2025; Gartner Peer Insights review themes.

Microsoft has invested heavily in AI data security since 2023 and the result is the most extensive Copilot-aware data security capability set in the industry. DSPM for AI provides discovery and risk assessment for Microsoft 365 Copilot, Copilot Studio agents, and a growing set of third-party AI sites. The Data Security Posture Agent adds natural-language search across SharePoint, OneDrive, Teams, and Copilot interactions. The capability is genuinely strong; the weakness is fragmentation across two DSPM versions, confusing documentation, and licensing dependencies that span Purview, Microsoft 365 Copilot, and Security Copilot.

Evidence: Microsoft Learn DSPM for AI and DSPM (preview) documentation; Ignite 2025 announcements.

Insider Risk Management provides user behaviour analytics for data-related risks, with adaptive protection that auto-tightens DLP enforcement when user risk increases. The Insider Risk Management Triage Agent (Security Copilot) reached GA November 2025 and triages alerts autonomously. For threats fitting the Microsoft data activity model, the capability is strong. For broader correlation outside the Microsoft estate, Purview depends on Microsoft Sentinel and Defender XDR — products outside the Purview product line.

Evidence: Microsoft Learn Insider Risk Management documentation; What's new in Microsoft Purview, November 2025.

Purview's classification engine is broad, mature, and natively integrated into the Microsoft 365 enforcement points. Per Microsoft's own documentation, the engine uses "RegEx, Bloom Filter and Machine Learning models." In practice the overwhelming majority of pre-built sensitive information types — passport numbers, driver's licenses, national IDs, credit cards, IBANs — are pattern-matched. Generative AI classification is not part of the engine.

The operational consequence is high false-positive rates, particularly for international tenants. A customer reporting on Microsoft's official Q&A forum in early 2024 described a scenario in which their device DLP policy continued to detect Philippines Passport Number and Chile Identity Card Number alerts after those types had been removed from the policy — a known behaviour with default device policies. Three further constraints compound the issue: OCR is required for image classification and is billed separately at $1.00 per 1,000 items; DLP does not natively scan inside JPEG, PNG, or ZIP files without OCR; and ML classifiers are not available for unstructured data in document files.

Evidence: Microsoft Learn classification supported list ("RegEx, Bloom Filter and Machine Learning models"); Microsoft Q&A thread "Purview DLP policy detects false sensitive info types (SIT)" March 2024; Microsoft Learn OCR pricing documentation; Forrester Wave Q1 2025 customer feedback themes.

Purview's automated remediation actions are limited to the controls Purview itself enforces — labels, DLP policies, and Copilot-specific discovery restrictions — rather than direct modification of access permissions on the underlying data. The DSPM remediation flow guides administrators toward four actions: applying a sensitivity label, applying a DLP policy that blocks Copilot from summarising labelled content, applying SharePoint Restricted Content Discovery, and (only in narrow cases) removing a specific sharing link.

Genuine least-privilege access remediation in the Microsoft ecosystem requires SharePoint Advanced Management plus manual action by SharePoint site owners. Microsoft's own product guidance notes at multiple points that DSPM-driven controls "do not impact information access — only discoverability via Copilot and search." Microsoft's Restricted Access Control feature is described as "a rapid-response option to contain risk while implementing risk remediation measures" — positioning RAC as containment rather than remediation. This is fundamentally different from access-governance-led products where the data security team revokes excessive permissions directly as the primary remediation primitive.

Evidence: Microsoft Learn DSPM oversharing remediation documentation; Microsoft Learn SharePoint Advanced Management overview; Microsoft Mechanics video commentary on oversharing controls.

Discovery is genuinely strong inside the Microsoft 365 and Azure estate. Outside the Microsoft estate the picture is materially worse than Microsoft's marketing suggests. Native discovery support for major enterprise systems including SAP and Oracle is absent; Microsoft's own technical guidance directs customers to build custom connectors using the Purview SDK or REST API. Most third-party "connectors" Microsoft markets are archival connectors that import data into Microsoft 365 mailboxes for compliance purposes — not live discovery and protection.

On-premises scanning: degraded by design. Microsoft staff publicly confirm that DLP alerts triggered by on-premises scans surface only Sensitive Information Type identifiers rather than matched content; that the Purview alerts UI does not fully load for on-premises-triggered alerts (a known limitation); and that the scanner requires fully-hydrated local files with no support for Azure File Sync tiered storage. For hybrid environments, this materially reduces the usefulness of the scanner.

Evidence: Microsoft Learn Data Map data sources; Microsoft Q&A SAP/Oracle gap confirmation; Microsoft Q&A on-premises scanner threads, February 2026.

Purview can identify excessive permissions on SharePoint sites, OneDrive shares, and Microsoft 365 groups — the most common Copilot oversharing risk — and the new Data Risk Assessment runs weekly across the top 100 SharePoint sites by usage. This addresses the immediate Copilot governance need but is materially shallower than the dedicated permission analysis offered by access-governance-led vendors, particularly for hybrid environments with on-premises file shares, complex Active Directory inheritance, or analytics platforms like Snowflake and Databricks.

Evidence: Microsoft Learn Data Risk Assessment documentation; Forrester Wave Q1 2025 customer feedback themes.

Purview's headline economics look strong because most of the capability set is bundled in Microsoft 365 E5 licensing. The real total cost of ownership is materially higher than that headline suggests, and the gap is structural rather than incidental.

Implementation is partner-led, not vendor-included. Microsoft does not include Purview deployment services in any licensing tier. Productive deployments are almost universally delivered through Microsoft's partner ecosystem — large systems integrators including Accenture, Deloitte, KPMG, EY, Wipro and Infosys, plus Microsoft-specialist consultancies. Typical mid-market initial deployments run USD 150-400k in services costs; large enterprise programmes routinely exceed USD 1 million across the first 18 months.

Hidden consumption charges. OCR is pay-as-you-go via Azure Syntex billing at $1.00 per 1,000 items. The new unified DSPM uses Data Security Processing Units. At-rest and in-transit protection for non-Microsoft sources are billed separately. Microsoft's own OCR cost estimator tool exists specifically because customers were repeatedly surprised by their first OCR bill.

Slow time-to-value. The default Purview classifier set generates substantial false-positive volume in international tenants out of the box. Productive deployments require months of policy tuning, custom Sensitive Information Type development, and ongoing administration.

Evidence: Microsoft Azure pricing for Purview consumption capabilities; Microsoft Learn OCR and DSPU pricing documentation; partner pricing benchmarks; Forrester Wave Q1 2025 customer feedback themes.

Strengths and weaknesses

Strengths

Unmatched native integration with the Microsoft 365 estate. No other data security vendor has Purview's depth of integration with SharePoint, OneDrive, Exchange, Teams, the Office desktop clients, the browser, and Microsoft 365 Copilot. For organisations whose sensitive data lives predominantly in these surfaces, Purview enforces classification, DLP, and labelling at the source rather than scanning data after it is at rest.

Best-in-class labelling, audit, and compliance reporting. The combination of cryptographic Azure Rights Management, the unified audit log with up to ten years of retention at E5, and Compliance Manager with mappings to 350+ regulatory frameworks is genuinely differentiated. For buyers whose primary motivation is regulatory evidence and persistent data protection, no other vendor competes on these three criteria simultaneously.

Ahead of the field on AI data security. Purview's investment in DSPM for AI, DLP for Microsoft 365 Copilot prompts (GA November 2025), Copilot Studio agent governance, and Agent 365 governance gives Microsoft the most extensive Copilot-aware data security capability set in the industry.

Weaknesses

Structural gaps in non-Microsoft data source coverage. Purview lacks native connector support for SAP, Oracle, and most major enterprise database systems. Microsoft's own technical guidance directs customers to build custom connectors. Coverage of AWS S3 and Google Cloud Storage exists but lags pure-play DSPM products. Buyers with significant data outside Microsoft and Azure should not assume Purview will discover it.

On-premises scanning experience is degraded by design. The Purview Information Protection scanner has documented limitations including no support for Azure File Sync tiered files, alerts that surface only Sensitive Information Type identifiers, and an alerts UI that does not fully load for on-premises-triggered events. These are confirmed by Microsoft's own support staff as known design limitations rather than bugs.

Remediation primitive is label-and-DLP, not access revocation. Purview identifies oversharing risks but does not directly revoke excessive access. Permission changes flow through SharePoint Advanced Management plus manual site-owner action. Microsoft's own materials note that DSPM-driven controls "do not impact information access — only discoverability via Copilot and search." For organisations whose primary need is direct access governance, this is a structural gap.

Operational tuning burden, hidden costs, and slow time-to-value. Pattern-matching-led classification produces high false-positive volume in international tenants out of the box. OCR is pay-as-you-go consumption. Productive deployments routinely require six to twelve months of tuning and a dedicated administrative team.

Best fit / Worst fit

Best fit for

Microsoft 365 E5 customers with predominantly Microsoft estates. Organisations adopting Microsoft 365 Copilot at scale who need integrated AI data security. Buyers with mature Microsoft administration capability and a dedicated compliance and information protection team. Organisations whose primary motivation is regulatory evidence. Buyers willing to invest in a six-to-twelve-month operational maturity curve.

Worst fit for

Organisations with significant non-Microsoft data estates, particularly SAP, Oracle, Snowflake, Databricks, or large on-premises file share footprints. Buyers below E5 license tier. Organisations seeking pure-play DSPM depth, fast time-to-value, or low-touch operational deployment. Buyers prioritising vendor neutrality across heterogeneous data estates. Organisations whose primary need is direct least-privilege access governance.

Microsoft 365 E7 — what changes for buyers

On 9 March 2026, Microsoft announced M365 E7 ("The Frontier Suite"), generally available from 1 May 2026 at $99 per user per month. E7 bundles M365 E5 ($60 from July 2026) + M365 Copilot ($30) + Entra Suite ($12) + Agent 365 ($15). Buying these separately from July 2026 would cost $117 — E7 saves approximately 15%.

What Agent 365 is: Agent 365 is a governance control plane for AI agents, not an AI runtime. It integrates Entra, Purview, and Defender XDR to govern AI agents as first-class identities — the same access controls, DLP policies, sensitivity labels, and audit trails that apply to human users now apply to what agents access and do with data. This is a material extension of Purview's scope: Copilot and third-party M365-registered agents are now governed by the same Purview compliance policies as human activity.

Competitive implication: For buyers evaluating standalone AI-SPM tools, E7's bundled agent governance should be evaluated first. Agent 365 covers Microsoft-native agents comprehensively. It does not cover third-party AI deployed outside the M365 ecosystem — for multi-cloud AI environments, a dedicated AI-SPM tool (Cyera, Securiti) remains relevant. But for organisations that are primarily Microsoft-centric in their AI deployment, the E7 bundle significantly reduces the standalone justification for a separate AI governance platform.

Timing note: E5 is $57 through June 2026 and rises to $60 from July 2026. Organisations on E5 evaluating E7 should run the numbers before their next renewal. The E7 economics improve after July 1 when the E5 baseline increases. Any renewal before July should include explicit E7 evaluation — and any E5 multi-year renewal before July should include price caps that protect against the July increase.

What the Q2 FY2026 earnings call tells buyers

In the January 2026 earnings call, Satya Nadella disclosed that 24 billion Copilot interactions were audited by Purview in Q2 FY2026, up 9x year-over-year. In the previous quarter it was 16 billion, up 72% quarter-over-quarter. This is not a marketing number — it is a disclosed financial metric from an investor call. For buyers evaluating Purview's AI monitoring capability, it is the most credible evidence that the AI governance use case is real and scaling.

The same call confirmed Security Copilot agents are now rolling out to all E5 customers — not just E7. Twelve new and updated Security Copilot agents across Defender, Entra, Intune, and Purview are now available to any E5 subscriber. If you are on E5 and have not yet deployed Security Copilot, it is already included in your licence.

The counter-signal buyers should understand: Copilot adoption sits at approximately 3.3% of Microsoft's 450 million M365 business subscribers despite years of aggressive pricing and promotion. Microsoft's account teams are under significant commercial pressure to move this number. That pressure translates directly into renewal conversations — expect more aggressive Copilot bundling, E7 upgrade pitches, and promotional pricing than in prior cycles. This is a buyer's window: Microsoft needs Copilot adoption more than the typical enterprise needs Copilot right now. Negotiate accordingly.

The July 2026 M365 price increases are confirmed and locked. Buyers renewing enterprise agreements before July 2026 can lock current E5 pricing. The E7 bundle at $99/user saves approximately 15% against buying E5+Copilot+Entra+Agent365 separately from July — but only if you need all four components. Run the actual maths against your specific planned deployment before committing.