AI data governance made easy: How Microsoft Purview tackles GenAI risks and builds trust
As AI transforms software development, the opportunities are vast - but so are the risks. AI promises faster innovation, smarter experiences, and new business models. But behind the excitement, leaders across industries are grappling with a core question: “How do I unlock the benefits of AI while protecting my data, complying with regulations, and maintaining customer trust?” In our 7th episode of the Security for Software Development Companies webinar series - Safeguard Data Security and Privacy in AI-Driven Applications - we addressed this challenge directly. Featuring Microsoft experts Kyle Marsh and Vic Perdana, this session revealed how Microsoft Purview delivers practical, built-in security for AI applications, helping software development companies and enterprise developers meet security expectations from day one. AI security is now a top concern for business leaders The shift toward AI-driven applications has heightened concern among CISOs and decision makers. Recent research from the ISMG First Annual Generative AI Study revealed that: Microsoft Purview for AI: Visibility, control, and compliance by design To address these risks without slowing innovation, Microsoft has extended Purview, our enterprise data governance platform, into the world of AI. From Microsoft Copilot to custom GPT-based assistants, Purview now governs AI interactions, offering: - Data Loss Prevention (DLP) on prompts and responses - Real-time blocking of sensitive content - Audit trails and reporting for AI activity - Seamless integration via Microsoft Graph APIs This means software developers can plug into enterprise-grade governance - with minimal code and no need to reinvent compliance infrastructure. What it looks like: Data Security Posture Management for AI in Microsoft Purview Purview’s Data Security Posture Management (DSPM) for AI offers centralized visibility into all AI interactions across Microsoft Copilot, Azure OpenAI, and even third-party models like Google Gemini or ChatGPT. A developer’s guide: How to integrate AI security using Microsoft Graph APIs Microsoft Purview offers a lightweight, developer-friendly integration path. As Kyle Marsh demonstrated during the webinar, just two core APIs are required: protectionScopes/compute This API lets you determine when and why to submit prompts/responses for review. It returns the execution mode: - evaluateInline: Wait for Purview to approve before sending to the AI model or to the user from the AI model (future functionality) - evaluateOffline: Send in parallel for audit only processContent Use this API to send prompts/responses along with metadata. If a DLP rule is triggered (e.g., presence of a credit card number), the app receives a block instruction before continuing. For less intrusive monitoring, you can use contentActivity, which logs metadata only - ideal for auditing AI usage patterns without exposing user content. Example in action: Blocking confidential data in Microsoft Copilot The power of Purview’s inline protection is demonstrated in Microsoft Copilot. Below, we see how a user’s query surfaced confidential documents - but was blocked from sharing due to policy enforcement. ect Obsidian') - enforced by Microsoft Purview’s DLP policy engine. Built-in support for Microsoft tooling Developers using Copilot Studio, Azure AI Studio, or Azure AI Foundry benefit from built-in or automatic integration: - Copilot Studio: Purview integration is fully automatic - developers don’t need to write a single line of security code. - Azure AI Foundry: Supports evaluateOffline by default; advanced controls can be added via APIs. Custom apps - like a chatbot built with OpenAI APIs - can integrate directly using Microsoft Graph, ensuring enterprise-readiness with minimal effort. Powerful enterprise controls with zero developer overhead Enterprise customers can define and manage AI security policies through the familiar Microsoft Purview interface: - Create custom sensitive info types - Apply role-based access and location targeting - Build blocking or allow-list policies - Conduct audits, investigations, and eDiscovery As a software development company, you don’t need to manage any of these rules. Your app simply calls the API and responds to the decision returned - block, allow, or log. Resources to help you get started Microsoft provides comprehensive tools and docs to help developers integrate AI governance: - Purview Developer Samples: samples - Microsoft Graph APIs for Purview: docs - Web App Security Assessment: aka.ms/wafsecurity - Cloud Adoption Framework: aka.ms/caf - Zero Trust for AI: aka.ms/zero-trust - SaaS Workload Design Principles: docs Final takeaway: Secure AI is smart AI “Securing AI isn’t optional - it’s a competitive advantage. If you want your solution in the hands of enterprises, you must build trust from day one.” With Microsoft Purview and Microsoft Graph, software developers can build AI experiences that are not only intelligent but trustworthy, compliant, and ready for scale. 🎥 Watch the full episode of “Safeguard Data Security and Privacy in AI-Driven Applications” at aka.ms/asiasdcsecurity/recording
M365 Developers Update | June 2025
Spotlight Bring the AI capabilities of Copilot into your apps and agents with Microsoft 365 Copilot APIs Learn More Dive deeper into the latest wave of updates to Copilot Studio, now with powerful new tools for multi-agent systems, enterprise data access, custom AI tuning, and more. See all updates Explore the Microsoft 365 Agents Toolkit, an evolution of Microsoft Teams Toolkit, designed to help you build agents and apps for Microsoft 365 Copilot and beyond. Read the docs Introducing the Agent Store: A centralized, curated marketplace within Microsoft 365 Copilot to browse, install, and try agents tailored to your needs. Start browsing Learn Use the Microsoft 365 Agents SDK to build agents for Microsoft 365 Copilot, Microsoft Teams, and more using models provided by Azure AI Foundry. Watch how Try the latest version of Dev Proxy, now with the capability to help you understand language models’ usage and costs in your applications. Get the latest Learn more about Athena, an AI-powered collaborative agent, how it was built, and how to create your own version of Athena right within Microsoft Teams. Read now Keep up to date On Demand: Catch up on all of our breakout sessions from Build Get started YouTube: Tune in for tutorials on the latest dev tools Subscribe now LinkedIn: Get the latest news, product announcements, demos, and more Follow us Community Calls: Learn from our experts on a variety of Microsoft 365 platform topics Join a callNavigating AI security: Identifying risks and implementing mitigations
As artificial intelligence becomes central to software innovation, it also introduces unique security challenges—especially in applications powered by large language models (LLMs). In this edition of the Software Development Company Security Series, we explore the evolving risks facing AI-powered products and share actionable strategies to secure AI solutions throughout the development lifecycle. *Data based on 2024–2025 global reports from Cyberhaven, Swimlane, FS-ISAC, Capgemini, Palo Alto Networks, and Pillar Security analyzing AI security incidents across sectors. Understanding the Evolving AI Threat Landscape AI systems, particularly LLMs, differ from traditional software in one fundamental way: they’re generative, probabilistic, and nondeterministic. This unpredictability opens the door to novel security risks, including: Sensitive Data Exposure: Leaked personal or proprietary data via model outputs. Prompt Injection: Manipulated inputs crafted to subvert AI behavior. Supply Chain Attacks: Risks from compromised training data, open-source models, or third-party libraries. Model Poisoning: Insertion of malicious content during training to bias outcomes. Jailbreaks & Misuse: Circumventing safeguards to produce unsafe or unethical content. Compliance & Trust Risks: Legal, regulatory, and reputational consequences from unvalidated AI outputs. These risks underscore the need for a security-first approach to designing, deploying, and operating AI systems. Key Risks: The OWASP Top 10 for LLMs The OWASP Top 10 LLM Risks offer a framework for understanding threats specific to generative AI. Key entries include: Prompt Injection Sensitive Data Disclosure Model and Data Poisoning Excessive Model Permissions Hallucination & Misinformation System Prompt Leakage Vector Embedding Exploits Uncontrolled Resource Consumption Each of these risks presents opportunities for attackers across the AI lifecycle—from model training and prompt design to output handling and API access. Inherent Risks of LLM-Based Applications Three core attributes contribute to LLM vulnerabilities: Probabilistic Outputs: Same prompt, different results. Non-Determinism: Inconsistent behavior, compounded over time. Linguistic Flexibility: Prone to manipulation and hallucination. Common attack scenarios include: Hallucination: Fabricated content presented as fact—dangerous in domains like healthcare or legal. Indirect Prompt Injection: Malicious prompts hidden in user content (emails, docs). Jailbreaks: Bypassing guardrails using clever or multi-step prompting. Mitigations include retrieval-augmented generation (RAG), output validation, prompt filtering, and user activity monitoring. Microsoft’s Approach to Securing AI Applications Securing AI requires embedding Zero Trust principles and responsible AI at every stage. Microsoft supports this through: Zero Trust Architecture Verify explicitly based on identity and context Use least privilege access controls Assume breach with proactive monitoring and segmentation Shared Responsibility Model Customer-managed models: You manage model security and data. Microsoft-managed platforms: Microsoft handles infrastructure; you configure securely. End-to-End Security Controls Protect infrastructure, APIs, orchestration flows, and user prompts. Enforce responsible AI principles: fairness, privacy, accountability, and transparency. Tools & Ecosystem Microsoft Defender for Cloud: Monitors AI posture and detects threats like credential misuse or jailbreak attempts. Azure AI Foundry: Scans models for embedded risks and unsafe code. Prompt Shield: Filters harmful inputs in real-time. Red Team Tools (e.g., PyRIT): Simulate attacks to harden defenses pre-deployment. Action Steps for Software Companies Securing AI Products Here’s a focused checklist for AI builders and software development companies: Embed Security Early Apply Zero Trust by default Use identity and access management Encrypt data in transit and at rest Leverage Microsoft Security Ecosystem Enable Defender for Cloud for AI workload protection Scan models via Azure AI Foundry Deploy Prompt Shield to defend against jailbreaks and injection attacks Secure the Supply Chain Maintain a Software Bill of Materials (SBOM) Regularly audit and patch dependencies Sanitize external data inputs Mitigate LLM-Specific Risks Validate outputs and restrict unsafe actions Use RAG to reduce hallucination Monitor prompt usage and filter malicious patterns Build for Multi-Tenancy and Compliance Use Well-Architected Framework for OpenAI Isolate tenant data Ensure alignment with data residency and privacy laws Continuously Improve Conduct regular red teaming Monitor AI systems in production Establish incident response playbooks Foster a Security-First Culture Share responsibility across engineering, product, and security teams Train users on AI risks and responsible usage Update policies to adapt to evolving threats Conclusion: Secure AI Is Responsible AI AI’s potential can only be realized when it is both innovative and secure. By embedding security and responsibility across the AI lifecycle, software companies can deliver solutions that are not only powerful—but trusted, compliant, and resilient. Explore More OWASP Top 10 for Large Language Model Applications | OWASP Foundation Overview - AI threat protection - Microsoft Defender for Cloud | Microsoft Learn Prompt Shields in Azure AI Content Safety - Azure AI services | Microsoft Learn AI Red Teaming Agent - Azure AI Foundry | Microsoft Learn AI Trust and AI Risk: Tackling Trust, Risk and Security in AI Models What is Azure AI Content Safety? - Azure AI services | Microsoft Learn Overview of Responsible AI practices for Azure OpenAI models - Azure AI services | Microsoft Learn Architecture Best Practices for Azure OpenAI Service - Microsoft Azure Well-Architected Framework | Microsoft Learn Azure OpenAI Landing Zone reference architecture AI Workload Documentation - Microsoft Azure Well-Architected Framework | Microsoft Learn Announcing new tools in Azure AI to help you build more secure and trustworthy generative AI applications | Microsoft Azure Blog HiddenLayer Model Scanner helps developers assess the security of open models in the model catalog | Microsoft Community Hub Inside AI Security with Mark Russinovich | BRK227 The Price of Intelligence - ACM QueueUltimate Partner LIVE: Igniting ecosystem excellence at Microsoft Redmond
On May 1–2, something extraordinary happened on the Microsoft Redmond Campus. Over 200 top leaders in the partner ecosystem came together for a high-impact, highly immersive experience—Ultimate Partner LIVE. This wasn’t just another conference. This was a strategic accelerator designed for the 0.01% of partners ready to lead through the next wave of transformation. "We’re doubling down on our Cloud Solution Provider partners—70% of incentives now go to those serving SMBs. With new capabilities, strategic offers, and AI-aligned priorities, CSPs are empowered to scale, retain customers, and lead the AI transformation." — Nicole Dezen, Microsoft, Chief Partner Officer and Corporate Vice President Global Partner Solutions More details here: 👉🏻https://lnkd.in/gA-zT_EW Ecosystem-Led Growth Is No Longer Optional—It’s Imperative The message from Microsoft leadership was clear: the future belongs to those who embrace ecosystem-led growth. Hyperscalers like Microsoft are reshaping the playing field, and the partners who align, adapt, and lead will own the future. It’s no longer about going it alone—it’s about orchestrating value at scale. "Organizational agility and technical intensity aren’t just strategies—they’re imperatives. To lead with innovation, partners must build unique IP, pivot fast, and align deeply with customer needs. At Microsoft, we don’t just keep up with change—we drive it." — Lori Borg, Microsoft, VP Americas GTM, GPS AI and Marketplace: Your Growth Engines for FY26 and Beyond If there was one dominant theme, it’s this: AI and Marketplace are the unstoppable growth engines for what’s next. From building AI-powered solutions that drive real business outcomes, to tapping into the explosive momentum of Microsoft’s commercial marketplace, this is where opportunity lives. Visionary insights from leaders at Tackle.io, WorkSpan, and Suger delivered clear guidance: move fast, align to Microsoft’s evolving Cloud GTM, and win where the market is headed. "Marketplace is no longer optional—it’s the engine for scale, speed, and monetization. With doubled revenue, co-sell incentives, Azure retirements, and embedded commerce, it’s clear: this is the future of go-to-market at Microsoft." — Cyril Belikoff, VP Microsoft, Azure and Industry Clouds Empowering the Future of AI Through Bold Partnerships Incredible fireside chats with leaders like Sandy Gupta, VP at Microsoft, and Pat Lee from NVIDIA, spotlighted how our ecosystem is the catalyst for the next wave of Agentic AI. Microsoft’s strategic alliance with NVIDIA isn’t just a partnership—it’s a platform for innovation at massive scale. "In the era of Agentic AI, our partnership with NVIDIA is accelerating a system of intelligence that is reshaping how enterprises operate—from reimagining employee and customer experiences to redefining business processes. With the democratization of AI through lower token costs and reduced hallucinations, the opportunity for partners to drive innovation, cloud migration, and responsible AI adoption has never been greater." — Sandy Gupta, Microsoft, VP, leading Microsoft Ecosystems of Global Software Companies Workshops That Build, Not Just Teach Forget the passive panels and endless slide decks. Ultimate Partner LIVE was built for action. Attendees rolled up their sleeves in workshops on smarter co-selling, high-conversion GTM plays, and marketplace motions that accelerate growth. Experts like Erin Figer, Reis Barrie, and Ashleigh Vogstad didn’t just share theory—they helped partners build strategies they could apply immediately. Proven Frameworks You Can Put to Work Now Every attendee left with real tools—the 7 Principles of Successful Partnerships, actionable co-sell strategies, and marketplace success frameworks designed for this exact moment in time. These aren’t abstract concepts. They’re battle-tested playbooks for achieving your greatest results in a rapidly changing landscape. High-Trust Networking That Moves the Needle This wasn’t a vendor hall—it was a curated room of decision-makers. Real conversations. Real connections. Real opportunities. From Microsoft leaders to top ISVs, GSIs, and the elite of the partner ecosystem, this was where deals were sparked and futures were shaped. Every Detail Designed for Impact From the moment you stepped on campus to DJ #MarcoPolo’s evening celebration, every experience was crafted to maximize connection, clarity, and action. This event wasn’t built for passive attendance—it was built to help you lead with confidence into FY26. We Are at a Critical Inflection Point AI is moving faster than anyone imagined. Microsoft’s strategies are evolving in real time. And the marketplace is poised for explosive growth. As Microsoft leaders Nicole Dezen, Lori Borg, and Cyril Belikoff made clear: the partners who stay agile, aligned, and ecosystem-first will lead the next era of transformation. Why Ultimate Partner LIVE Might Be the Shortcut You’re Looking For Hear directly from Microsoft decision-makers—on stage and across the table Build your GTM and co-sell strategy in the room with ecosystem experts Engage in workshops that deliver action, not just insight Connect with the people who can unlock your next big opportunity Experience an event intentionally built for the pace of today’s change This wasn’t just an event. It was a launchpad for the leaders who will define what’s next. If you couldn’t join us in Redmond—or just want to revisit the powerful insights shared from the Microsoft stage—the full livestream recording from Ultimate Partner LIVE is now available to you today. Access the replay here: https://lnkd.in/e6sntk9T This is your opportunity to catch up, stay ahead, and lead through the change. Please subscribe to our channel to stay ahead as we plan to bring you more from UP and Ultimate Guide to Partnering Are you ready to lead? Contact me directly at vincem@theultimatepartner.com.Join us at Microsoft's campus for the Ultimate Partner LIVE event!
The countdown is on - Ultimate Partner LIVE in Redmond, WA on May 1st – 2nd is fast approaching, and you won’t want to miss it! This is the event for connecting with Microsoft executives, partners, and industry experts driving ecosystem growth and shaping the future. Join us as we take over the iconic Microsoft Conference Center for two action-packed days. It’s your opportunity to engage directly with Microsoft leaders, learn from expert panel discussions, immerse yourself in hands-on workshops, and experience a targeted partnering experience. Microsoft’s ongoing support of Ultimate Partner, along with its sponsorship of the Ultimate Partner LIVE event, highlights the importance of ecosystem-led growth. A special thank you to all the Microsoft leaders below who plan to take the stage and those who coordinate behind the scenes to make this event a success. Over 30 industry-leading speakers and award-winning partners will grace the stage and share insights that will shape the future of cloud go-to-market strategies. The two-day agenda will cover topics such as: Prepare Your Microsoft Business for FY26 The Marketplace Ecosystem Opportunity The State of the Marketplace Ecosystem Microsoft’s AI & Software Vision Forging the New World of Data & AI Defining the Marketplace of the Future for SMBs The Power of Partnerships: Building AI Together Perspective of a Microsoft Marketplace POTY Award Winner Embracing Change and Pivoting for Success Acre of Diamonds: How to Leverage the Opportunity with Microsoft Unlocking the Opportunity Through Ecosystem Thinking The Partner Perspective for Ecosystem Thinking Future of Distribution Co-Selling Journey Celebrating Microsoft: 50 Years of Tectonic Shifts And more! Why This Event is Critical: We are standing at a pivotal moment: AI is advancing faster than most organizations can keep up with. Accelerate Microsoft FY25 Q4 priorities and understand FY26 opportunities. Microsoft Marketplace is poised for explosive growth. Go-to-market success now demands tighter alignment and precision from partners than ever before. Why You Can’t Afford to Miss This Event: Exclusive Access to Microsoft Decision-Makers The executives setting the agenda for FY26 will be in the room. You’ll gain clarity on FY26. Nicole Dezen, Chief Partner Officer & CVP Global Partner Solutions will kick us off, and you will hear from leaders across the Software, Services, Reseller, Marketplace, and Sales Organizations. Know exactly how to align your business, resources, and messaging to what Microsoft actually cares about this fiscal year. Interactive Workshops to Sharpen Your Skills How to co-sell smarter with Microsoft How to design GTM plays that convert How to win with commercial marketplace motions With Industry Experts like Reis Barrie, CEO of Carve Partners, John Jahnke, CEO of Tackle.io, Sam Gong, SVP Marketing at WorkSpan, Rebecca Jones, Chief Growth Officer of Bridge Partners, Erin Figer, Founder of Core Consulting, and leaders from The Partner Masters, Suger and more hosting immersive workshops, be prepared to learn and implement. Proven Frameworks for Delivering Results Vince Menzione will share his 7 Principles of Successful Partnerships—developed from working with top-performing partners across the ecosystem. Other experts will share frameworks for marketplace, co-selling, GTM, and more Networking Opportunities to Accelerate Your Business This will be a curated executive room where you'll connect with partner leaders, advisors, and Microsoft stakeholders in high-trust conversations that spark real opportunities. You’ll leave with a tighter, more strategic network—and future deals in motion. An Intentionally Designed Experience with Real-World Impact Every detail of this event—from the location in Redmond to the experience design—is built to support meaningful conversations, clarity, and action. What People Say: “What an incredible experience at the Ultimate Partner Live Executive Summit. Two days packed with relationship building, business growth, and learning – it felt like months of progress compressed into 2 days.” Steven Karachinsky, CEO at Ziro “Really loved the vibe and amazing conversations with the partners at the Ultimate event! I think you absolutely have the right formula to create impact for the entire ecosystem with such a gathering.” Sandy Gupta, VP, Ecosystems of Global Software Companies at Microsoft “The event was informative, insightful, and inspiring. Your ability to put into words the tectonic shift we are all experiencing is refreshing! Thanks for being the trailblazer by providing thoughtful content and curated partner experiences. We have all been craving this for so long.” Regina Manfredi, EVP, General Manager at Crayon Group US “Attending this event was like striking gold 🙂 As a startup founder focused on co-sell and partnership, the validation and insights I gained at this event were invaluable; the future of partnerships and alliances is clearly bright. Vince Menzione, you are truly a powerhouse, and I wish you continued success! Most importantly, thank you for streaming the entire event, was truly incredible.” Archana Vadya, Founder & CEO at PartneRite “A big shout out to Vince Menzione for bringing this scale event (Ultimate Partner LIVE in Dallas) to life! It was a mega effort, and the results were amazing. Just look at the abundance of LinkedIn posts! It was an absolute pleasure sharing the stage with so many incredible speakers and colleagues from Microsoft and several of our partners like WorkSpan, Carve Partners, BDO, EY, Archive360, Sage, PartnerTap.” Kevin Peesker, (former) President, SMC - Small, Medium, Corporate Business at Microsoft This will prove to be the most valuable two days for your business in the first half of 2025. Ultimate Partner LIVE is a premium, focused, two-day immersive experience that will equip you with the tools and insights to lead through change and drive measurable results in FY26. Register now and use code ULTIMATEVIP50 at checkout for an exclusive discount.M365 Developers Update | May 2025
Spotlight Learn how you can build advanced agents for Microsoft 365 Copilot by leveraging the Microsoft 365 Agents SDK. Join the session Get an in-depth look at building agents in Copilot Studio, with a special focus on the latest innovations and what's ahead. Add to schedule Discover how you can add more knowledge to Microsoft 365 Copilot with Copilot connectors and actions. See more details From Copilot Studio to Visual Studio and Azure AI Foundry, join this session to discover the various ways you can build agents for Microsoft 365. Register now Learn Explore how to build Microsoft Teams collaborative agents as virtual colleagues with Visual Studio Code. Sign up Join us for a session on building advanced copilot Studio agents by integrating Azure AI Search, the Azure model catalog, and Model-Context Protocol (MCP) into your agents. Learn more Build task -specific declarative agents for Microsoft 365 Copilot using advanced recipes in Copilot Studio. View session See how you can build agent in Copilot Studio with deep integration into Azure AI Foundry services. Explore more Tune into this breakout session to learn how to build declarative agents for Microsoft 365 Copilot. Save to favorites Keep up to date Microsoft build labs- Learn how to use all of the latest dev tools in our hands-on labs. Sign up Updated Teams AI library- Create even more powerful agents for Microsoft Teams. Read how LinkedIn- Get the lates news, product announcements, demos and more Follow us Community calls- Learn from our experts on a variety of Microsoft 365 platform topics. Join a callWhy being secure and transactable is a key to marketplace success
The Partner Spotlight series highlights the achievements of forward-thinking partners who are driving innovation in the commercial marketplace. These industry pioneers share how they leverage AI to develop advanced applications, create impactful solutions on the Microsoft Cloud, launch transactable offerings, and accelerate their success through marketplace sales. In this installment, I had the opportunity to chat with Ásgrímur Skarphéðinsson, Co-founder and Chief Technology Officer at Klynke, about the companies focus on building securely on the Microsoft cloud, their motivation for publishing transactable offers, and the success they have seen on the Azure marketplace. About Ásgrímur: As CTO of Klynke, Ásgrímur Skarphéðinsson drives product innovation and technology strategy. With a strong background in engineering and full-stack development, Ásgrímur leads the design and architecture of Klynke’s time tracking platform, ensuring it delivers secure, scalable performance within the Microsoft cloud. He is passionate about building intuitive solutions that integrate seamlessly with Microsoft 365 and Teams—helping modern teams work smarter, stay compliant, and focus on what matters most. __________________________________________________________________________________________________ [JR]: Tell us about your organization. What inspired the founding? What products/services do you offer? [AS]: At Klynke, we believe technology should feel like a natural extension of the way people work, and that belief inspired our founding. We started with a simple idea: to help organizations work smarter by building secure, cloud-based tools on the Microsoft platform, and our work proved something important: Microsoft’s cloud had the power and flexibility to bring innovative ideas to life. From there, we noticed a gap, that Microsoft 365 didn’t offer native time tracking. So, we built what we wished existed: a secure, intuitive time management solution that works directly inside the Microsoft 365 tools people already use. That’s how Klynke Time Management was born. Today, our solution connects seamlessly with Teams, Planner, Outlook, SharePoint, and Excel. It helps teams track time right where the work happens—without switching tools or breaking focus. And with the Klynke Teams app included, it’s all just a click away. [JR]: Can you tell us a bit about the application(s) you have available on the marketplace? How does it work? [AS]: Klynke Time Management, available on Microsoft Marketplace, is built to simplify time tracking within Microsoft 365. Whether you're working in Teams or Outlook, Klynke lets you log time on tasks and projects without leaving your flow. Thanks to our deep integration with Microsoft Graph, Klynke syncs across tools like Teams, Outlook, Planner, SharePoint, and Excel—so everything stays connected and up to date. The app is designed to be as intuitive as it is powerful. You can log time, track progress, and view reports through filtered dashboards—all within your familiar Microsoft environment. And since it’s all hosted on Microsoft’s cloud, customers enjoy world-class security and compliance by default. [JR]: What Microsoft cloud products did you use in your app development? What value is this enabling with your customers? [AS]: We built Klynke Time Management using a mix of Microsoft cloud services that together create a seamless, secure experience for our users. At the core is Microsoft Azure, which gives us scalability and rock-solid reliability. We use Azure Active Directory for secure authentication, Azure SQL to manage metadata, and Microsoft Graph to integrate deeply with Microsoft 365 apps like Teams, Planner, Outlook, SharePoint, and Excel. In terms of new releases, testing and deployment we use Azure DevOps. Klynke also runs directly within Microsoft Teams and Outlook, which means users can track time without ever leaving their daily workflow. This cross-cloud application integration helps teams stay productive, focused, and secure—all while working in tools they already know. [JR]: How has Microsoft supported you along your journey? [AS]: Microsoft has been our platform provider and a true partner in our growth. From development to deployment, we’ve been able to tap into Microsoft’s ecosystem for guidance, technical resources, and support. Publishing on the Microsoft Marketplace has been a game changer. It gave us the reach of a global platform, and the best part, Microsoft handles transactions. That lets us focus on what matters most: building great software and supporting our customers. Being part of the Microsoft ecosystem means we’re always building on a foundation of trust, innovation, and security. [JR]: How does your org align its business to enabling positive impact for your customers and communities? [AS]: At Klynke, our mission is to help people work smarter—and that includes organizations making a real difference in their communities. We designed our time tracking solution to be flexible and intuitive for professionals, managers, and teams, with a special focus on small and medium-sized organizations. A key feature is support for teams working across time zones and regions, where coordination is critical, and simplicity is essential. One example is a UK-based healthcare nonprofit focused on improving the diagnosis and management of chronic diseases in primary care. With a globally distributed team, they needed a simple way to stay coordinated without adding operational overhead. Klynke helps them track time consistently and collaborate more effectively allowing them to stay focused on improving patient outcomes. Another example is a U.S.-based healthcare provider with a national network of therapists and contractors. Time tracking across multiple time zones was a challenge, especially with compliance requirements. By integrating Klynke into their Microsoft 365 tools, they’ve streamlined operations and reduced administrative complexity. App Security: Building securely on the Microsoft cloud [JR]: Tell us about your approach to app security. What inspired your focus on building securely on the Microsoft cloud? [AS]: Security has always been front and center for us—it’s not a checkbox, it’s a mindset. From the beginning, we knew our app had to operate securely within our customers’ Microsoft 365 environments. That’s why we chose to build on Microsoft’s cloud. It offers powerful tools like Azure Active Directory and Microsoft Graph that make secure development not just possible, but practical. Our goal is simple: to give customers a solution they can trust—one that’s built on a foundation of compliance, data protection, and transparency. We’re proud that security is baked into every layer of our product. It’s not something we add on—it’s something we architected for from the start. [JR]: Can you describe the security features of your application(s) available on the marketplace? How do they work? [AS]: Klynke Time Management is built using Microsoft’s platform-as-a-service (PaaS) model, which means we benefit from constant security updates and enhancements from Microsoft. Key security features include: Azure Active Directory integration for secure authentication and access control Microsoft Graph API for secure data interactions within Microsoft 365 Zero data duplication—Klynke operates inside your Microsoft 365 environment, so your data stays where it belongs The result? A time management solution that’s secure by design and always evolving. [JR]: What Microsoft cloud security products did you use in your app development? What value is this enabling with your customers? [AS]: We rely on Azure Active Directory to handle secure identity and access management. It ensures that only authorized users can access sensitive time-tracking data. Because we’ve built on Microsoft’s cloud, we’re also aligned with enterprise-grade security standards out of the box, something our customers deeply value, especially in regulated industries. [JR]: What were some of the challenges you encountered while building securely on the Microsoft Cloud, and how did you overcome them? [AS]: Our primary challenge was ensuring seamless integration with Microsoft 365 without compromising security or performance. We encountered technical obstacles such as API throttling and latency. We addressed these by utilizing Microsoft's comprehensive documentation, tools like the Graph Explorer, and Azure DevOps best practices. These resources enabled us to fine-tune our implementation and ensure stability and performance. [JR]: What business outcomes/impact have you experienced as a result of building securely? [AS]: Building securely on the Microsoft cloud has allowed us to deeply integrate Klynke into the Microsoft 365 ecosystem. Our users benefit from working within familiar tools, and our secure-by-design approach has reinforced customer trust. Knowing their data remains within their own Microsoft 365 environment and complies with industry standards has been a key differentiator for our solution. [JR]: What security measures do you implement to protect sensitive customer data in your applications? [AS]: We do not transfer or store any customer data outside their Microsoft 365 environment. All data remains under the customer’s control and is managed according to their own security and compliance policies. This architecture ensures that the customer retains full ownership and oversight of their information. [JR]: How do you ensure the security of third-party integrations and APIs used in your applications? [AS]: We rely exclusively on Microsoft Graph API, protected by Azure Active Directory, and managed entirely by the customer’s global IT administrator. To access the directory securely, we use the Microsoft Authentication Library (MSAL), which is developed by Microsoft to meet the highest standards of security. [JR]: Can you share any best practices for securing applications during the development lifecycle on the Microsoft Cloud, or advice for partners who are just starting their app security journey? [AS]: Our experience would suggest Adopt Azure Active Directory as the foundation for authentication. Use MSAL for secure and scalable access to AD resources. Design for multi-tenant environments from the start. Architect your solution to avoid moving data from the customer's environment—leaving data ownership and security within their domain. Publishing transactable offers [JR]: What business outcomes have you experienced as a result of having a transactable offer on the marketplace? [AS]: Having a transactable offer on the Microsoft commercial marketplace has meaningfully streamlined our sales process. Customers can now try, buy, and deploy Klynke Time Management with just a few clicks, all within the familiar Microsoft environment. This level of accessibility has helped accelerate adoption, broaden our reach, and improve conversion rates. Since making Klynke transactable, we’ve expanded from serving customers in a single country to supporting users across eight countries, spanning four continents. One customer, based in the U.K., manages a globally distributed team that extends into Asia—highlighting how Klynke’s deep integration with Microsoft 365 makes it easy to coordinate across time zones and regions. The marketplace has played a key role in enabling this kind of international scale with minimal friction. [JR]: How has the ability to transact directly on the marketplace influenced your sales strategy and customer interactions? [AS]: Being able to transact directly in the marketplace has streamlined our sales approach, enabling customers to explore, purchase, and implement Klynke Time Management more efficiently. This ease of access has allowed us to reduce friction in the buying process, leading to quicker decisions and smoother customer interactions. It’s also helped us focus more on delivering value, as customers are empowered to manage their own journey with less reliance on traditional sales cycles. [JR]: Were there any challenges you encountered throughout the publication process? How did you overcome them? [AS]: Our biggest challenge was implementing the SaaS fulfilment APIs required for publishing on the Microsoft commercial marketplace. This task demanded more effort from our development team than we initially anticipated. However, we were pleasantly surprised by the level of quality testing Microsoft applied to our application. The feedback and support from Microsoft helped us refine and strengthen our solution, ultimately resulting in a better product for the marketplace.M365 Developers Update | April 2025
Spotlight Debug your agents directly in Microsoft 365 Copilot to streamline your workflow with the agent debugging experience Get Started Learn how to build a declarative agent for Microsoft 365 Copilot that calls a secured API in our three-part series Watch now Introducing agent flows: Transforming automation with AI-first workflows Try it out Learn Discover how you can build AI-enabled voice agents with Azure Communication Services and Azure OpenAI Watch Demo Enhance Microsoft 365 with new Microsoft Graph connectors for AI-powered search, insights, and productivity Read more Try the latest version of Dev Proxy, now with improved validation, plugin reliability, a brand-new Docker image, and more Get it now Keep up to date Microsoft Build- Join us in-person and online to diver into advanced AI and agent capabilities Register now AI Agents Hack 2025- Participat in our hackathon (April 8-30) to learn from experts and build agents for a chance to win prizes Hack together YouTube- Watch tutorials, demos, and more on our channel Subscribe Community calls- Learn from our experts on a variety of Microsoft 365 platform topics Join a callExciting updates to the ISV Success Visual Studio benefit!
We have some fantastic news to share with you. 🎉 The ISV Success Visual Studio benefit is getting an upgrade! Starting in March, you will still have access to Visual Studio Enterprise and Azure DevOps and we're rolling out a host of new training and community benefits that will supercharge your development experience. These exciting new benefits will be available in Partner Center, making it easier than ever to access everything you need to excel in your development journey. Here's a sneak peek at what's coming your way: New Training Benefits - Sharpen your skills with a variety of training courses tailored to help you stay ahead in the ever-evolving tech landscape with exclusive discounts on DevForge and DomeTrain. DevForge's expert led courses, featuring renowned educator Tim Corey. Unlock a library of developer upskilling resources, from comprehensive master courses to specialized trainings. Explore DevPass Dometrain Pro led by industry veteran Nick Chapsas, Dometrain courses are designed to teach you actionable skills and real-world practices, as if you were paired with a skilled senior engineer in a real modern company. Browse Dometrain courses New Community Benefits - Engage with like-minded professionals and get your technical questions answered in our vibrant community forums. Microsoft Q&A: Have a technical product question? Find it on Microsoft Q&A – the home for technical questions and answers at Microsoft. Microsoft Tech Community: Connect and engage with fellow users and Microsoft technical experts on best practices, design architecture and the latest updates. Developer Community: Post questions, find answers and share your knowledge in the Developer Community forums. Azure Community: Get help directly from the Azure team within these select forums. Concierge Chat: Available 27/7. Chat with us for assistance finding technical documentation product information or using your subscription benefits. Chat assistance is provided in English **Important ** Please be aware that, going forward, these benefits will not be available for previous versions of Visual Studio and Visual Studio for Mac. We're thrilled to bring you these enhancements and can't wait to see the amazing things you'll achieve with them. Stay tuned for more updates and happy coding!
