Next month, we are making several updates to the free Microsoft Copilot service for users with a Microsoft Entra account to enhance data security, privacy, and compliance and simplify the user experience. For users signed in with an Entra account, Microsoft Copilot will offer enterprise data protection (EDP) and redirect users to a new simplified, ad-free user interface designed for work and education.
Enterprise data protection
For users signed in with an Entra account [1], Microsoft Copilot will offer enterprise data protection. EDP will be available for these users at no additional cost. EDP refers to controls [2] and commitments, under the Data Protection Addendum and Product Terms, that apply to customer data for users of Copilot for Microsoft 365 and Microsoft Copilot [3]. This means that security, privacy, and compliance controls and commitments available for Copilot for Microsoft 365 will extend to Microsoft Copilot prompts and responses. Prompts and responses are protected by the same terms and commitments that are widely trusted by our customers—not only for Copilot for Microsoft 365, but also for emails in Exchange and files in SharePoint.
With EDP in Microsoft Copilot:
- We secure your data: We help protect your data with encryption, at rest and in transit, rigorous physical security controls, and data isolation between tenants.
-
Your data is private: We won’t use your data except as you instruct. Our commitments to privacy include support for GDPR, ISO/IEC 27018 [4], and the Data Protection Addendum.
- Your access controls and policies apply to Copilot [5]: Prompts and responses are logged, retained, and available for audit, eDiscovery, and advanced Microsoft Purview capabilities. The specific controls will vary depending on the underlying subscription plan.
- You are protected against AI security risks: We help safeguard against AI-focused risks such as harmful content and prompt injections.
- Your data isn’t used to train foundation models: Prompts and responses are not used to train foundation models.
Simplified experience
We’ve also responded to customer feedback with a new simplified, ad-free Copilot user interface designed for work and education. And to help people get started quickly, we’re introducing prompt examples relevant to work and education scenarios.
Starting in mid-September, you will be able to experience Microsoft Copilot at Microsoft.com/copilot and in the Microsoft 365 app, and it will be coming soon to Microsoft Teams and Outlook. To ensure people across your organization have easy access to Microsoft Copilot and can benefit from the security and experience updates to Copilot, enable in-app access today.
The option to pin Copilot can be found under Settings on the Copilot page in the Microsoft 365 admin center (Global Admin permissions required).
Image of a settings page with options to agree or disagree pinning. The page includes toggle switches for each option, allowing the user to select their preference.
To learn more about these updates, head to our FAQ. And be sure to check back here for more announcements and updates in the weeks to come.
________________________________________________________________________________________________
[1] Government cloud customers and students under 18 are not yet eligible.
[2] The specific controls will vary depending on the underlying subscription plan.
[3] The use of the term EDP is not meant to limit the benefits offered under the Data Protection Addendum and Product Terms. The specific controls will vary depending on the underlying subscription plan.
[4] Microsoft Copilot for Microsoft 365 runs on the ISO 27018 certified Microsoft 365 platform. Microsoft Copilot will start rolling out to the same platform in the second half of September 2024 for users signed in with a Microsoft Entra account.
[5] EDP experience may vary based on your Entra account service SKU.
Microsoft
