Microsoft Purview Data Loss Prevention Reviews and Ratings

Rating: 7.4 out of 10

Score

7.4 out of 10

Reviews

14 Reviews

The most effective DLP suite for Microsoft environments

Rating: 8 out of 10

Incentivized

April 30, 2025

Use Cases and Deployment Scope

I oversee our Information Security program and utilize Microsoft Purview to govern and enforce aspects of our Data Security including data discovery, data classification, data retention, and data loss prevention. As an E5 customer, Microsoft Purview is included and has strong integration into the Microsoft ecosystem. We utilize it to scan our files stores including OneDrive, SharePoint, Teams, and Email as well as data stores within Azure. The product comes with built in classifiers to detect sensitive content (e.g. SIN/SSN, financial information, health information, etc...). It also allows trainable classifiers to be created to detect content that is proprietary to organizations.

There are multiple levels of DLP controls which can be applied at various points in the data path to reduce risk of unwanted data disclosure, or malicious exfiltration.

Pros

Extensive library for data content classifiers.
Strong integration with Microsoft products allowing effective controls to be applied (e.g. Exchange/M365 for email, Microsoft Defender for Cloud Apps to control web, SharePoint/OneDrive to apply policies on sharing.)
Insider Risk module provides visibility into suspicious activities which may not be detected by regular DLP rules.

Cons

Requires a lot of time to configure. This is not unique to Purview DLP, but new customers should anticipate this and allocate sufficient time and resources to plan for a successful deployment.
Steep learning curve. There are a lot of sections, pages, and tabs which need to be configured. Learning where to find these and what each setting does will require subject matter expertise.
Integration with Microsoft Defender suite is lacking. Purview is designed for Data Governance, Compliance, and Privacy. For this reason, it makes sense to be standalone; however, the DLP modules should have stronger integration into the Microsoft Defender console where Security teams spend the bulk of their time.

Likelihood to Recommend

I would highly recommend Microsoft Purview Data Loss Prevention for companies that are utilizing Microsoft technologies based on the strong integrations.

If a company is using other technologies (e.g Google Workspace), then Microsoft Purview Data Loss Prevention would not be a good fit and would be difficult to implement/manage.

Peter Marshall

Director, Information Security and Compliance in Information Technology at Gore Mutual (201-500 employees)

Vetted Review

4 years of experience

Microsoft Purview Data Loss Prevention Review

Rating: 7 out of 10

Incentivized

August 12, 2024

Use Cases and Deployment Scope

Data loss prevention. Preventing exfiltration of data.

Pros

Well, it has a direct integration with all the Microsoft products, which makes integration a lot easier and seamless.

Cons

Overall, Microsoft DLP is not my number one choice because there's not much flexibility. There's a lot of restrictions and the way they set up rules a lot really restrictive. Thus it takes a lot more time for my team to build the rules and establish the controls as needed. So it's very clunky in that way and they have not improved it over the years, but I know they're trying to get a better, however it takes time because Microsoft, as we all knows, not a really security centric company.

Likelihood to Recommend

Well, it'd be more well-suited if you already have a license with Microsoft E5 license. Yeah, that'd be more suited and you don't want to spend much more on another complex data loss prevention tool.

Verified User

Team Lead in Information Technology (1001-5000 employees)

Vetted Review

10 years of experience

Microsoft Purview Data Loss Prevention Review

Rating: 10 out of 10

Incentivized

August 9, 2024

Use Cases and Deployment Scope

We provide services and solutions using Microsoft products to companies that are contractors in the defense industrial base or the DOD contracting space. Our job is to help them get compliant to help them meet compliant standards. We do so by leveraging Microsoft 365 features like Purview and configuring those to incorporate principles and controls and practices of cybersecurity. So it's to secure the organization. So for us, DLP comes really important because CMMC, which is the regulatory standard which we must help our customers achieve, it's a data-centric standard - so it follows the data. Something like Purview where we can add the sensitivity labels to the data, where we can do protection of the data to stop it from unauthorized disclosure, unauthorized viewing, or whatever it may be. It's actually a real MVP for us because we're able to, because our entire compliance standard once again is data-centric and it's focused on controlled and classified information, we're able to attach DLP and sensitivity labels and things like that using Purview to the type of data that's really important to us to protect. It helps in everything: activates some of the instant response techniques, make sure that we are enforcing mechanisms and it helps us discover C, but it helps us also discover CUI within the environments when we're doing discovery for new clients and onboarding or if we're validating protections that they have in place.

Pros

Automatic labeling, once we've trained the naming conventions and things like that and we get the labels placed on things. One of the biggest problems that our clients face is the fact that they don't particularly know every single time exactly the data that they're trying to protect, how to identify it when it comes into the system or when they create it, right? So we're using Purview and we're using the abilities that Purview has to auto-label things based off of either taxonomy that you have produced or created or that have been automatically populated through AI. That makes it a lot easier and kind of thwarts possible user error that causes problems for organizations.

Cons

I think this is going to be everybody that has to operate primarily in GCCI, all of the cool high speed features that we can read about in Purview, making sure that they're all available in GCCI for all the clients and we know that that's a process. It has to go through vetting and things like that, but the sooner that we get the entire suite available to the GCCI customers, I think the better off we'll be.

Likelihood to Recommend

Business to business collaboration. I think Purview is a hero, especially in organizations where you need to protect the data flow and you need to enforce data flow protections that you put in place. When you're doing business to business, you have people from other businesses that are invited into your tenant and they're going to be doing work and collaborating for bids or whatever it may be. With Purview it stops and makes sure that all those new people that may not be accustomed to the way that you do things don't have access to what they need to and they only the things they do. You're not stalling productivity and you're creating protections. I think it's great.

Verified User

Director in Product Management (5001-10,000 employees)

Vetted Review

Reseller

2 years of experience

Purview Review

Rating: 7 out of 10

Incentivized

May 20, 2024

Use Cases and Deployment Scope

It discovers data that we need to address for PCI compliance.

Pros

It does everything that Microsoft touches automagically, and it's incredibly easy to deploy for our cloud-based environment.

Cons

It does not hit things that are not in the Microsoft environment.

Likelihood to Recommend

It's fantastic for identifying data that you need to either clean up, destroy, or at least know intact. It can be applied to more than just PCI. So for example, you could potentially find health information or any other types of data that you might be concerned with. So PI data effectively.

Verified User

Professional in Information Technology (10,001+ employees)

Vetted Review

Microsoft Purview Data Loss Prevention review

Rating: 7 out of 10

Incentivized

May 10, 2024

Use Cases and Deployment Scope

Help prevent risky or unauthorized use of sensitive data on apps, services, and devices.

Pros

Cloud-native solution
Prevent unauthorized sharing, transfer, or use of sensitive data across apps
Alerting in time using AI
Central place for policies

Cons

Retention policies limit
Cost factor to process large data sets
Inter operability

Likelihood to Recommend

Integration with teams, etc, is a bonus.

Verified User

Director in Engineering (10,001+ employees)

Vetted Review

3 years of experience

Microsoft Purview Data Loss Prevention review

Rating: 8 out of 10

Incentivized

February 29, 2024

Use Cases and Deployment Scope

Data loss is the most important and major worry for every organization. Microsoft Purview Data Loss Prevention is the most reliable solution in order to protect your data.We have created policies for our sensitive information and this policy ensures that data is not sent to a wrong person in the form of email or document. When such activity is detected it sends an alert to the admin so that the admin can take necessary actions before the damage is caused.We have also created a policy for Teams. It detects whenever any sensitive or confidential information is shared in Teams in the form of attachments or messages.

Pros

It is very efficient and reliable in protecting the sensitive data or information os the company.
It is very easy to setup the policies in Microsoft Purview Data Loss Prevention because the user interface it so easy and it also provides an option to test the policy before you finally push it to the production environment.
It efficiently performs content inspections and scanning of data from removable devices and applications

Cons

False positives are generated sometimes but that is very very rare.
Cost of the product can be revised. However it gives good value for what level of protection it is providing.
Only the initial setup was a bit complicated. Otherwise it is solving our problems.

Likelihood to Recommend

Microsoft Purview Data Loss Prevention is well suited for every organization where data is their most important asset. There could a lot of data types like, HR data, Payroll data, Non-disclosure agreements, Contracts, Invoices, Financial data, User data, Client data, etc. And these data needs to be protected from being leaked or hacked or shared inappropriately to a wrong person. All these data comes under exteremely sesitive and confidential oriented data. You can create and configure policies to your Exchange, SharePoint and Teams so that none of the data is sent to a wrong person and the policy will filter out and send a notification the admin to block such wrong activities. This will also help and is most necesarry during ISO audits.

Verified User

Manager in Information Technology (1001-5000 employees)

Vetted Review

3 years of experience

All in One Endpoint Protector.

Rating: 8 out of 10

Incentivized

February 26, 2024

Use Cases and Deployment Scope

While working in a corporate environment, we face a lot of sensitive client information and data like important records, financial data, security numbers, etc. With the help of Microsoft Purview gives security and data prevention by applying the DLP policies. With the help of the DLP, we automatically prevent information and build security by applying it on various platforms like - excel, word, Microsoft 365, windows, etc.

Pros

Detects sensitive information by deep content analysis.
DLP uses Machine Learning algorithms to detect content matching with policies.
Automatic data prevention by applying policies.

Cons

Additional cost on usage beyond free tier.
Limited number of Azure services and tools integrations.
Doesn't support all types of data sources.
Reduced performance on scanning large data sources.

Likelihood to Recommend

It provides a centralized view of the service facilities and view of data assets, making it more convenient for usage. Within the Organization, it improves data governance and security compliance by centralizing sensitive data, making it easier to manage. The free tier is available, but for a license, Its cost is determined by various factors like sources scanned, indexed data, and number of API requests.

Verified User

Engineer in Corporate (10,001+ employees)

Vetted Review

1 year of experience

Excellent, adaptable and scalable Microsoft Purview Data Loss Prevention for Microsoft 365 E5 and Azure users

Rating: 7 out of 10

Incentivized

February 12, 2024

Use Cases and Deployment Scope

We use Microsoft Purview Data Loss Prevention in a several different ways across multiple departments. Firstly, we are involved in contact center operations for DoD recruiting, lead nurturing, social outreach etc. As such, contact agents and management often have sensitive PII that has to be handled within defined DoD parameters. Pureview allows us to integrate policies that can scan comms, OneDrive, etc etc. for potentially mishandled PII and allow us to act on it before it becomes an issue (eg. shared outsie the company via email, shared files etc.). Because we work with government contracts and entities, we are often held to very specific security policies and have to demonstrate compliance (CIS levels and FedRamp etc.). PureView DLP lets us export reporting to show our scan activity and compliance conformity. Additionally, we use Preview DLP policies to monitor agency level SharePoints, emails, etc to monitor and coach for potentially sensitive information leaks which can contribute to phishing attacks and the like (eg. employees emailing SSN or other PII for personal use.

Pros

Excellent pre-defined policies across a variety of content and regions
Variable scope of policy enforcement, delineation by groups and departments
Excellent reporting and dashboard interfaces.
Various alerting and intervention settings depending on which data we are restricting.

Cons

Advanced or specific policies have a high learning curve.
We have to rely on our reseller partner to implement some of the policies that we were looking for.
Microsoft is constantly trying to upsell the PureView suite and hides some features included in E5 Enterprise to try and upsell.

Likelihood to Recommend

Microsoft Purview Data Loss Prevention is ideal for a 365 E5 enterprise organization where Azure directory is your 'source of truth' for user management and security policies. It is suited for using OneDrive as personal file management and SharePoint as collaborative files storage. Allows delineation of scanning various assets based on job function and department (as defined by Azure groups etc.). No additional cost if you are already invested in an E5 enterprise environment (for most functions, MS has additional DLP product enhancements)

Verified User

Administrator in Information Technology (51-200 employees)

Vetted Review

2 years of experience

Microsoft Purview Data Loss Prevention - Great for Data Identification and eDiscovery

Rating: 6 out of 10

Incentivized

February 12, 2024

Use Cases and Deployment Scope

We utilize Microsoft Purview Data Loss Prevention to help identify electronic patient health information that is transmitted across our systems or stored online and make sure that it is protected wherever we find for regulatory compliance. The information protection aspects of it are good at identifying this sensitive data amidst mountains of regular data, and the legal discovery side helps with making sure we're compliant anytime we need to put a hold on information for legal purposes.

Pros

It's a great product from an information protection perspective, as it can identify different types of data across tons of different locations.
It's great at applying standard regulatory frameworks, like HIPAA, to management actions so you can work towards being as compliant as possible.
The eDiscovery tools are very helpful when it comes to managing legal holds and discovery requests, as it's simple to freeze accounts or hold at points in time for discovery.

Cons

The Data Loss Prevention tools don't seem to integrate well with other DLP tools Microsoft provides, like those built into Exchange Online. Data is missed when it should be blocked from being sent.
The way Purview contributes to the overall Microsoft Security Score can be a bit difficult to tell, it's not clear what is being applied to improve the score and other management windows need to be accessed to address suggestions.

Likelihood to Recommend

Microsoft Purview Data Loss Prevention is very good for identifying sensitive data across multiple settings, like OneDrive, Exchange Online, Sharepoint, etc. If you want to find data across your whole tenant, this is a decent tool to use for it.

Verified User

C-Level Executive in Information Technology (201-500 employees)

Vetted Review

6 years of experience

Microsoft Purview DLP is best for Microsoft workloads.

Rating: 9 out of 10

Incentivized

February 12, 2024

Use Cases and Deployment Scope

In today's digital world data is the most important asset, and everyone wants to protect their data either from getting lost or getting in the wrong hands. With the move towards working from anywhere since the pandemic data control and management is tougher than before. At this time products like Microsoft Purview comes to rescue. With its simple yet effective implementation and policy creation we can protect our digital data estate from leaving the corporate boundaries. And if you are using Microsoft's office products this the best DLP tool available in the market.

Pros

Integration with Microsoft Office Apps
Discovery of data over your cloud estate
Auto Classification of data with help of built in classifiers.
Ability to build custom policies and classifiers.

Cons

we could have more actions available in the DLP policies.

Likelihood to Recommend

It is the number 1 solution if you use Microsoft office products as it has the best coverage for them and understands the data and usage best for Office products.

You might see for any third-party options for other office application suite if you find this expensive.

Verified User

Engineer in Information Technology (51-200 employees)

Vetted Review

1 year of experience

Loading Reviews List....

Home
,
Data Loss Prevention
,
Microsoft Purview Data Loss Prevention
,
Reviews and Ratings

Microsoft Purview Data Loss Prevention Review

Rating: 10 out of 10

Incentivized

August 9, 2024

Use Cases and Deployment Scope

Pros

Automatic labeling, once we've trained the naming conventions and things like that and we get the labels placed on things. One of the biggest problems that our clients face is the fact that they don't particularly know every single time exactly the data that they're trying to protect, how to identify it when it comes into the system or when they create it, right? So we're using Purview and we're using the abilities that Purview has to auto-label things based off of either taxonomy that you have produced or created or that have been automatically populated through AI. That makes it a lot easier and kind of thwarts possible user error that causes problems for organizations.

Cons

I think this is going to be everybody that has to operate primarily in GCCI, all of the cool high speed features that we can read about in Purview, making sure that they're all available in GCCI for all the clients and we know that that's a process. It has to go through vetting and things like that, but the sooner that we get the entire suite available to the GCCI customers, I think the better off we'll be.

Likelihood to Recommend

Verified User

Director in Product Management (5001-10,000 employees)

Vetted Review

Reseller

2 years of experience