Microsoft Purview Data Loss Prevention
Data loss prevention (DLP) software
Data security software
- Features
- Ease of use
- Ease of management
- Quality of support
- Affordability
- Market presence
Take the quiz to check if Microsoft Purview Data Loss Prevention and its alternatives fit your requirements.
Pay-as-you-go
Free Trial
Free version unavailable
Small
Medium
Large
- Real estate and property management
- Construction
- Accommodation and food services
What is Microsoft Purview Data Loss Prevention
Microsoft Purview Data Loss Prevention is a data loss prevention capability within the Microsoft Purview compliance suite that helps organizations detect and prevent sensitive data from being shared inappropriately. It is used by security, compliance, and IT teams to apply policies across Microsoft 365 services and endpoints, and to extend controls to some non-Microsoft cloud apps via integrations. The product centers on policy-based controls using sensitivity labels, information types, and contextual conditions, with alerting and reporting through Microsoft’s compliance and security portals.
Deep Microsoft 365 integration
It applies DLP policies across core Microsoft 365 workloads such as Exchange, SharePoint, OneDrive, and Microsoft Teams from a centralized compliance experience. This reduces the need for separate agents or connectors for Microsoft-native data paths compared with tools that focus primarily on third-party repositories. It also aligns with Microsoft Purview Information Protection concepts (labels and sensitive information types), enabling consistent classification-to-enforcement workflows.
Endpoint DLP coverage
It supports endpoint DLP scenarios on managed devices, including monitoring and controlling actions like copying to removable media, printing, clipboard use, and uploads to web destinations (depending on platform and configuration). This helps address exfiltration paths that are not limited to cloud storage or email. Endpoint controls can be combined with user notifications and justification prompts to support policy enforcement with user context.
Policy templates and reporting
It provides built-in policy templates and sensitive information types that map to common regulatory and data categories, which can accelerate initial rollout. Alerting, incident investigation, and reporting are available through Microsoft’s compliance tooling, supporting audit and operational workflows. The platform also supports tuning with conditions and exceptions to reduce false positives for common business processes.
Best fit in Microsoft stack
Organizations that rely heavily on non-Microsoft collaboration suites, storage platforms, or SaaS applications may find coverage less uniform than in Microsoft-first environments. Extending DLP to non-Microsoft apps can require additional configuration, supported connectors, or reliance on other Microsoft security components. This can increase implementation effort compared with products designed primarily for broad third-party SaaS discovery and control.
Licensing and feature complexity
Capabilities vary by Microsoft 365 and Purview licensing tiers, and some advanced controls require higher-level subscriptions. This can make it difficult to predict total cost and to ensure required features are available across all users and devices. Policy scope, prerequisites, and portal separation across Microsoft security/compliance tooling can also add administrative complexity.
Tuning required for accuracy
Like most DLP tools, effective use depends on careful policy design, exception handling, and ongoing tuning to balance protection with business productivity. Sensitive information detection can generate false positives or miss context-specific cases without custom rules, exact data match, or additional classification work. Rollouts often require phased deployment, user communication, and monitoring to avoid disrupting legitimate workflows.
Plan & Pricing
| Plan | Price | Key features & notes |
|---|---|---|
| Microsoft 365 E5 / E5 Compliance | Included in Microsoft 365 E5 license (no separate Purview DLP charge for Microsoft 1st‑party apps) | Data Loss Prevention (DLP) for Microsoft 365 data: Exchange Online, SharePoint Online, OneDrive for Business, Teams chats; endpoint DLP included with eligible E5 variants. cite |
| Microsoft Purview Suite (Business Premium add-on) | $10.00 per user/month (paid yearly) | Add-on for Microsoft 365 Business Premium (max 300 seats). Includes advanced Purview capabilities including DLP across apps, devices, and cloud; offers a 30‑day trial on the product page. cite |
| Pay-as-you-go (Purview consumption meters) | Consumption-based — see examples below | Consumption meters for Data Security (In Transit Protection, Insider Risk Management), Audit, Data Lifecycle Management, eDiscovery, Communication Compliance, etc. Billed to a linked Azure subscription; PAYG meters apply to non‑Microsoft data/AI scenarios. Azure pricing page describes the meters; published PAYG prices announced by Microsoft. cite |
PAY-AS-YOU-GO (example meters and published unit prices) Pricing model: Hybrid — Entitlement (per-user licensing) + Pay-as-you-go consumption. PAYG example costs (published by Microsoft for Purview PAYG meters):
- In Transit Protection (Information Protection and Data Loss Prevention) — $0.50 per 10,000 requests. cite
- Insider Risk Management — $25 per 10,000 events. cite
- Audit (Audit Standard for non-Microsoft AI apps) — $15 per 1,000,000 audit records ingested (180‑day retention). cite
- Data Lifecycle Management (Premium) — $6 per 1,000,000 text messages per month. cite
- eDiscovery Premium — $20 per GB stored / month. cite
- Communication Compliance Standard — $300 per 1,000,000 text records. cite
- Communication Compliance Premium — $500 per 1,000,000 text records. cite
Notes & important details:
- PAYG pricing for Purview consumption took effect in stages (January 6, 2025 and additional meters on May 1, 2025); PAYG charges are billed to the Azure subscription linked to your Microsoft 365 tenant — if no linked Azure subscription, meters will stop working after stated cutover. cite
- Many core DLP capabilities for Microsoft 365 data remain included with Microsoft 365 E5/E5 Compliance; PAYG meters generally apply when protecting non‑Microsoft 365 data, protecting data in AI apps/agents, or using certain advanced Purview consumption features. cite
- Azure Purview pricing page lists the meters and billing units but may require region/currency selection or sign-in to reveal in‑page estimates; Microsoft Tech Community announcement publishes the PAYG unit prices referenced above. cite
Seller details
Microsoft Corporation
Redmond, Washington, United States
1975
Public
https://www.microsoft.com/
https://x.com/Microsoft
https://www.linkedin.com/company/microsoft/
