Table of Contents
Summary
- Endpoint DLP policies can now be deployed to specific macOS devices or device groups.
- This feature allows for more granular control in managing data protection on Mac endpoints.
- Admins can configure device-based scoping without affecting existing policies.
- Available for tenants on version 101.25072 or higher.
- Communicate changes to security and compliance teams for better organization preparedness.
Admin Impact: Medium
User Impact: Low
Release Start: 22 Dec 2025
Release End: 01 Jan 2026
Services: Purview
Category: Stay informed
Tags: New Feature, User Adoption, Admin Action
History
12/16/2025 Item Added to Message Center
Microsoft Message
We’re introducing support for deploying Endpoint Data Loss Prevention (DLP) policies to specific macOS devices or device groups. This enhancement provides more granular control for organizations managing data protection on Mac endpoints.
This message is associated with Microsoft 365 Roadmap ID 526792.
When this will happen
General Availability (Worldwide): Rollout will begin in late December 2025 and is expected to complete by early January 2026.
How this affects your organization
Who is affected: Admins managing Endpoint DLP policies for macOS devices.
What will happen:
- You can scope Endpoint DLP policies to specific macOS devices or device groups.
- This feature is available for tenants running version 101.25072 or higher.
- No changes to existing policies unless you choose to configure device-based scoping.
What you can do to prepare
- Ensure your environment is updated to version 101.25072 or higher.
- Review your Endpoint DLP policy configurations to determine if device-level scoping is needed.
- Communicate this change to your security and compliance teams.
Compliance considerations
No compliance considerations identified. Review as appropriate for your organization.