Abstract

This white paper provides guidance on data monitoring obligation in UK GDPR and DPA compliance for UK-based businesses utilizing AI technologies. It emphasizes proactive monitoring of data management strategies, configuring of Microsoft Purview Audit to create detailed logs for in-depth analysis of data access.

Introduction

In the era of digital transformation, AI technologies are revolutionizing business operations. However, the integration of AI brings significant data security and compliance challenges, particularly under the stringent requirements of the UK GDPR. This white paper aims to guide businesses in implementing robust data security measures and achieving compliance through effective use of Microsoft Purview Audit.

Problem Statement

AI systems often process vast amounts of personal data, increasing the risk of data breaches and non-compliance. Businesses must adopt proactive data management audit strategies to mitigate these risks and ensure regulatory compliance.

Solution

Microsoft Purview Audit offers a powerful solution for monitoring and analyzing data access, helping businesses maintain data security and GDPR compliance. By configuring detailed audit logs, organizations can gain valuable insights into data usage and detect potential security threats.

Steps to Configure Audit in Microsoft Purview

1. Ensure Appropriate Licensing

• Users must have Microsoft 365 F1, F3, or E3 for standard audit capabilities.
• For advanced auditing, users need Microsoft 365 E5, E5 Compliance, or F5 Security + Compliance.

1. Turn Auditing ‘ON’
2. Connect-ExchangeOnline
3. Set-AdminAuditLogConfig -UnifiedAuditLogIngestionEnabled $true
4. Search the Audit Log
5. Add-RoleGroupMember -Identity "Compliance Management" -Member <user or group>

Search the audit log for AI interactions

When auditing AI interactions, Microsoft Purview Audit captures detailed events including user interactions with Copilot. If these files have sensitivity labels, this information is also recorded. To search for these interactions:

1. Sign into the Microsoft Purview compliance portal.
2. Select the Audit tab on the left panel of the homepage to navigate to the Audit tool.
3. Select New Search tab at the top of the Audit page.
4. Configure your search on the New Search tab:
5. Set the Start date and End date for your search, with the last seven days selected by default.
6. Enter relevant keywords or phrases in the Keyword Search, using asterisks (*) to replace special characters.
7. Select administrative units from the Admin Units dropdown if needed.
8. Under Activities - friendly names select specific activities relevant to Copilot by navigating to Copilot activities and selecting Interacted with Copilot. You can also use the search bar to find activities related to Copilot by entering Copilot.
9. For precise searches, use Activities - operations names and enter CopilotInteraction as the operation name for Copilot activities.
10. In the Record types dropdown, select record types linked to Copilot activities. Enter Copilot in the search box above the list for easier selection.
11. Name your search in the Search name field for easy identification.
12. Enter specific users in the Users field or leave it blank to return entries for all users (and service accounts) in your organization.
13. Enter File, folder, or site names for targeted searches, or leave this box blank to return entries for all files and folders in your organization.
14. Select Search to start your search job. A maximum of 10 search jobs can be run in parallel for one user account. If a user requires more than 10 search jobs, they must wait for an In progress job to finish or delete a search job.

Conclusion

By leveraging Microsoft Purview Audit, UK-based businesses can enhance their data security and ensure GDPR compliance. Proactive data management strategies, combined with detailed audit logs, provide the necessary tools to monitor data access and protect sensitive information. If you’re further interested in advanced auditing, I’d love to schedule a free 30 mins session here: Secure AI advisory service