Review the new features introduced to Enterprise Data Loss Prevention (E-DLP) in December
2025.
Strengthening MPIP Labeling Security
December 9, 2025
Microsoft periodically makes changes to Purview (formerly AIP) labels that can cause
your existing Enterprise Data Loss Prevention (E-DLP) file property data patterns to fail to detect
sensitive documents. When these detection mechanisms fail, sensitive data labeled
with Microsoft Purview labels might bypass Enterprise DLP inspection, which can
lead to compliance risks and unintended data exposure.
Strengthening MPIP Labeling Security significantly improves the resiliency and
reliability of Enterprise DLP patterns that inspect for Purview labels. Enterprise DLP now has a more robust detection mechanism for file property data patterns that detect
for Purview labels. This shields your policy rules against labeling changes
initiated by Microsoft updates, ensuring your detection patterns remain effective
without requiring frequent, reactive updates from your data security administrators.
This strengthened consistency and stability saves your team significant time and
resources by eliminating the need for constant monitoring and updating, ensuring
consistent data security enforcement despite changes from Microsoft.
Enterprise DLP Integration with Prisma Browser
December 15, 2025
The Enterprise Data Loss Prevention (E-DLP) and Prisma Browser Integration solves the challenge
of maintaining consistent data protection across different security products by
unifying data classification, management, and visibility. Instead of duplicating
effort, your data security administrators can leverage their investment in creating
and tuning data profiles and classifiers across both Enterprise DLP and Prisma Browser. The integration dynamically synchronizes profiles and
classifiers, ensuring updates made in Enterprise DLP automatically reflect in
Prisma Browser rules.
For Prisma Browser, your data security administrators can configure a Enterprise DLPdata profile for Local
Detection or for Cloud-Assisted detection. Data profiles
configured for Local Detection support only regex-based
detections. Prisma Browser evaluates traffic that matches against
Local Detection data profiles directly on the
browser and only Prisma Browser can use Local
Detection data profiles. Conversely, your data security
administrators can configure Enterprise DLP Cloud Assisted data profiles with
all supported detection methods. Prisma Browser intelligently routes
classification requests based on profile type, optimizing security, and
performance.
This unified approach extends protection beyond traditional file transfers to include
last-mile controls like clipboard operations, screen sharing, typing guard, and data
masking. Your organization gains comprehensive data protection with reduced
administrative overhead while benefiting from deployment flexibility that can reduce
dependency on Explicit Proxy for SaaS apps.
New App Support
Enterprise Data Loss Prevention (E-DLP) introduced new app support for the following:
New Feature
Expanded File Size Support for Existing Apps
December 15, 2025
Enterprise DLP now supports large file inspection for the
following apps:
Amazon S3
(Amazon Photos only) Amazon Cloud Drive
Basecamp
LinkedIn Web - Upload
Mendeley
File Inspection Support for GenAI Apps
December 15, 2025
Enterprise DLP now supports file inspection for the
following GenAI apps:
