SC-401 · Question #270
SC-401 Question #270: Real Exam Question with Answer & Explanation
The correct answer is C: data loss prevention (DLP). To prevent a specific user from using M365 Copilot to summarize content with a "Highly Confidential" label, while allowing them direct access, you use a Microsoft Purview Data Loss Prevention (DLP) policy targeting Copilot, configured to block processing of that specific label fo
Question
You have a Microsoft 365 subscription that contains a user named User1. You create a Highly Confidential sensitivity label named Label1. You need to prevent User1 from using Microsoft 365 Copilot to summarize content that has Label1 applied. The solution must ensure that User1 can directly access the content. Which type of policy should you create?
Options
- Acommunication compliance
- Bretention
- Cdata loss prevention (DLP)
- Dinsider risk management
Explanation
To prevent a specific user from using M365 Copilot to summarize content with a "Highly Confidential" label, while allowing them direct access, you use a Microsoft Purview Data Loss Prevention (DLP) policy targeting Copilot, configured to block processing of that specific label for that user, without removing their underlying file permissions. This DLP policy intercepts Copilot's attempts to use the labeled content for summarization, effectively removing the content extraction right for Copilot in that scenario. The DLP policy overrides Copilot's ability to extract and summarize content from files with the "Highly Confidential" label when that specific user prompts Copilot. This doesn't remove the user's direct permissions to open, read, or edit the file; it only stops Copilot from using it as a source for summaries. This method leverages Purview DLP to create fine-grained controls over what Copilot can process, even when standard permissions allow access. https://learn.microsoft.com/en-us/copilot/microsoft-365/microsoft-365-copilot-privacy
Topics
Community Discussion
No community discussion yet for this question.