Microsoft Purview compliance portal: Insider Risk Management - Collection policies impact on IRM
Insider Risk Management will now support collection policies to scope classification and user activities. Admins must review existing and new collection policies across Purview solution admins to ensure they detect required activities for IRM policies.
Key dates
- TBD — rollout (Feature rollout in development; specific availability date not provided)
Microsoft's description
With this update, Microsoft Purview will start supporting collection policies. Collection policies allow customers to scope classification (SITs - Sensitive Information Types) and activities for scoped users. We recommend reviewing collection policies as they can be created by different Purview solution admins to ensure they are setup to detect the activities required by Insider Risk Management policies Microsoft Purview Insider Risk Management correlates various signals to identify potential malicious or inadvertent insider risks, such as IP theft, data leakage, and security violations. Insider Risk Management enables customers to create policies to manage security and compliance. Built with privacy by design, users are pseudonymized by default, and role-based access controls and audit logs are in place to help ensure user-level privacy.