Limiting sensitive data in notifications

Btw, is this guidance for A9 or A10? I suppose general public can't get a hold of this guidance or is there a link to share?

Very strange. No other app is doing this and certainly no Google app does that like you can see Keep in my screenshot. And this is on Pixel, which should be as standard as it can be. Samsung.. they don't show it either on lock screen. My work S9 just shows blue email or event icon, no text, nothing. It's a pity design is broken with this change.

wroot - Hi, this was a recent bug fix because we found we were not consistent in how notifications were displayed with respect to the OS setting. This change ensures that when the OS restricts notification content on the lock screen, we display an appropriate response and use the correct APIs. For example, the Samsung mail app states "Content hidden" when the OS setting is enabled. This change does not have anything to do with limiting sensitive notifications via App Protection Policies (APP). APP cannot override the OS control, either. We're implementing the APP controls because our enterprise customers cannot be assured that the OS control is enabled. So, in your example, if the APP is set to allow, and the user has enabled the OS setting, then the content is hidden per the OS control.

You talk about Android and only show iOS screens above. Currently on my personal phone and personal IMAP account in Outlook (no work data at all) i see this and i don't like it:

I don't have an older screenshot, but Outlook used to show just a blue icon and a time a week ago (like Keep and other apps). It seems that Outlook already received this support and by this you are breaking Android's design structure introducing this superfluous message that i don't need. I already block sensitive data on lock screen with system wide setting. I've commented about this on Outlook blog https://techcommunity.microsoft.com/t5/Outlook-Blog/Outlook-mobile-makes-the-grade-A-gold-standard-for-secure/bc-p/998547 and tried to contact in-app support.

I also wonder what will happen if system setting is set to block and APP/ACP is set to Allow. I hope you are not going to somehow overrule system setting and push sensitive data to lock screens. Not sure if this is possible. But seeing this new message in Outlook notification, who knows. If org thinks it is ok to show sensitive data on lock screens, user should still be able to decide to hide it.

When I first saw this tweet, I thought you meant the notifications might be obscured based on sensitivity label setting. The rest of this is very cool, and I can't wait to see it delivered. Do you think you will ever expand this feature to block company data, if certain sensitivity labels are used, versus all mail notifications being on/off as a global setting? 

This reminds me of these scenario you guys talked about at ignite, with a VP getting an important email with sensitive information in the title showing up as a notification... Perhaps those marked with particular labels like Confidential could be obfuscated, while other lower labels wouldn't? (If configured as such by the org, as an options, similar to obfuscating mail but allowing calendar data in the notifications)

I'm not sure how complicated that would be to roll out in the future, just a thought I had when I read the first part of your post. 🙂 Thanks again for bringing so many great features to Outlook mobile via Intune APP and ACP!!!

Your gold standard session from ignite was the best session from the week in my opinion, and I've been sharing it with tons of people! Https://aka.ms/OMGSignite if y'all haven't seen it, totally worth the watch (I've already rewatched it a couple times as well)