Loading...

Microsoft Purview | Endpoint Data Loss Prevention – Ability to protect files stored in the excluded folders in Windows

Microsoft Purview | Endpoint Data Loss Prevention – Ability to protect files stored in the excluded folders in Windows

Microsoft Purview Endpoint DLP will protect sensitive files in previously excluded Windows folders (e.g., AppData) during egress actions starting July 2026. Admins must update policies, deploy anti-malware client 4.18.26051+, and educate users. Audit mode logs actions; block mode enforces restrictions to reduce data loss risk. What and Why: Microsoft Purview Endpoint Data Loss Prevention (DLP) is introducing the ability to protect sensitive files even when they reside in commonly excluded Windows folders such as AppData directories and temporary folders. Previously, files stored in these excluded paths were not subjected to Endpoint DLP policy enforcement. With this update, policy checks will apply during key egress actions, including copying, printing, saving to network shares, and uploading to cloud services, helping reduce the risk of sensitive data leaving your organization from these user-writable locations.  This message is associated with Microsoft 365 Roadmap ID 562992. Rollout Schedule: General Availability (Worldwide): We will begin rolling out in early July 2026 and expect to complete by early July 2026. How this will affect your organization: Who is affected: Admins and users in organizations that use Microsoft Purview Endpoint Data Loss Prevention (DLP) on Windows devices Platforms: Microsoft Purview compliance portal Windows endpoints supported by Microsoft Purview Endpoint DLP Microsoft Defender anti-malware client version 4.18.26051 or later required What will happen: With this update, admins can extend Endpoint DLP protection to files stored in excluded Windows folders (for example, %AppData% and temporary directories) during egress activities.  Users in audit mode can continue their actions, which will be logged for review.  Users in block mode will be prevented from performing restricted actions (for example, copying to removable media, uploading to cloud services, or printing)  If both audit and block policies apply to a user, block takes precedence  This change improves protection coverage by addressing scenarios where sensitive data in excluded paths may have previously gone unmonitored.  Screenshot: Endpoint DLP settings for excluded Windows folders and file egress activities: View image in new tab Action Required / Recommendations: Before enabling this feature, you must first deploy anti-malware Client version 4.18.26051 or later   Review excluded folder paths: Identify which […]

The post Microsoft Purview | Endpoint Data Loss Prevention – Ability to protect files stored in the excluded folders in Windows appeared first on M365 Admin.

Published on:

Learn more
M365 Admin
M365 Admin

by João Ferreira

Share post:

Related posts

Stay up to date with latest Microsoft Dynamics 365 and Power Platform news!
* Yes, I agree to the privacy policy