Purview DLP: Paste to supported browsers

Hi,

As per my understanding of your concern, the policy definitely needs evaluation. Additionally, you should check a few samples to determine if the content is sensitive information. The policy detects when a user attempts to paste content to a restricted service domain. The policy will only trigger if the content itself is identified as sensitive, such as containing a social security number or other predefined sensitive information types. To control this completely, you need to evaluate the policy again and control the "Copy To Clipboard" activity in the Endpoint DLP policy.

I also suggest using the Activity Explorer in the Microsoft Purview portal to review the audit logs and ensure that the policy is being applied correctly. Filter the logs by the "Paste to Supported Browsers" activity to see if any events are recorded.

Example Scenario: If you want to block all items that contain specific sensitive information (e.g., credit card numbers) from being pasted to unallowed domains, you need to create a rule in the policy that detects the type of information you want to protect and set the actions for each activity to "Block."

Be aware that changes to eDLP policies can take some time to deploy fully to endpoints. Delays of 24-48 hours are common, so ensure that you allow sufficient time for the changes to take effect.

Good to read: Configure endpoint DLP settings | Microsoft Learn