Microsoft Purview: Insider Risk Management – Viewing AI interaction messages for anonymized users in IRM
Insider Risk Management now allows analysts to view AI interaction messages (prompts and responses) for anonymized users during investigations, providing greater visibility into AI-related risky behavior without compromising user anonymization settings.
Key dates
- 2024 — preview (Feature in development/preview)
Microsoft's description
Customers can now access and review the underlying risky prompt and response interactions generated by users during AI usage, even when user anonymization is enabled within Insider Risk Management investigations. This capability ensures that anonymized investigation workflows do not limit visibility into the contextual AI activity associated with potential risk. This enables analysts to effectively investigate detailed AI interactions across the organization. Microsoft Purview Insider Risk Management correlates various signals to identify potential malicious or inadvertent insider risks, such as IP theft, data leakage, and security violations. Insider Risk Management enables customers to create policies based on their own internal policies, governance, and organizational requirements. Built with privacy by design, users are pseudonymized by default, and role-based access controls and audit logs are in place to help ensure user-level privacy.