Microsoft Solutions Partner · Data Security & Governance
Sensitivity Labels DLP Insider Risk Audit Premium Compliance Manager Unified Catalog DSPM for AI · GA

Deploy and run Microsoft Purview across data, identity and AI

Microsoft Purview is the unified data security, compliance and governance platform that sits across Microsoft 365, Azure and your wider data estate. We deploy it, tune it, and run it for Indian enterprises — including the brand-new DSPM for AI capability that gives you visibility into how Copilot and third-party AI tools handle sensitive data.

Get a Sized Purview Quote → See the Modules
10+
Purview modules deployed
DSPM for AI
GA April–May 2026
DPDPA + CERT-In
Indian regulator-mapped
INR Billing
GST invoiced, full ITC

Microsoft Purview is two products under one brand

Most buyers know Purview as the M365 compliance suite — DLP, sensitivity labels, eDiscovery. But Purview also includes the data governance half (formerly Azure Purview / Unified Catalog) for cataloguing data across SQL, Snowflake, Databricks, data lakes and Power BI. Knowing which half you actually need keeps the licensing bill honest.

Half 1 · Data security & compliance

Purview Compliance — the M365 suite

Sits inside Microsoft 365. Protects Office documents, mailboxes, SharePoint, OneDrive, and Teams chats with classification, DLP, retention, and risk monitoring. This is what most Indian buyers mean when they say "Purview".

Modules included

  • Sensitivity Labels — manual + auto-classification, encryption
  • Data Loss Prevention — Exchange, SharePoint, OneDrive, Teams, endpoint
  • Insider Risk Management — disgruntled-employee + IP exfiltration signals
  • eDiscovery Standard / Premium — legal hold, custodian comms, review
  • Audit Standard (180-day) / Premium (1-year + high-value events)
  • Compliance Manager — ISO 27001, DPDPA, NIST, RBI templates
  • Records Management — file plan + disposition review
  • Communication Compliance — Teams + email policy violations

Licensed via: M365 E3 (basic) · M365 E5 (advanced) · E5 Compliance add-on · Business Premium Purview add-on (NEW)

Half 2 · Data governance

Purview Data Governance — Unified Catalog

Sits outside Microsoft 365. Scans SQL Server, Azure SQL, Snowflake, Databricks, Synapse, S3, ADLS, Power BI, Fabric and on-prem data sources. Builds a data map with lineage, glossary, classification, and quality scoring. Replaces the legacy "Azure Purview" branding.

Capabilities

  • Unified Catalog — searchable inventory across the whole data estate
  • Data Map & Lineage — column-level lineage from source to BI
  • Business Glossary — link technical schema to business terms
  • Auto-classification — sensitive data discovery across non-M365
  • Data Quality — rules, scoring, exception alerting
  • Data Health Controls — actionable posture across the catalog
  • Advanced resource sets — efficient scanning of partitioned data

Licensed via: Pay-as-you-go (Azure metering) — independent of M365 plan. Some features need M365 E5 for the full experience.

The Purview module map

What each module actually does, and which Microsoft 365 SKU unlocks it. Hover any card on the live page for the full feature list — or jump to the licensing table below to size the right bundle.

Compliance

Sensitivity Labels

Manual + auto-classification of files and emails. Apply encryption, watermarks, and conditional access based on content. Default labels, mandatory labelling, and label inheritance for child items.

Licensed via: E3 (manual) · E5 (auto + auto-rules)

Compliance

Data Loss Prevention (DLP)

Block or warn on sharing of credit cards, Aadhaar/PAN, source code, IP, financial reports across Exchange, SharePoint, OneDrive, Teams chat and Windows endpoints. Adaptive Protection ties policy to user risk.

Licensed via: E3 (basic) · E5 (advanced + Teams + endpoint + adaptive)

Compliance

Insider Risk Management

Detect IP theft, departing-employee exfiltration, healthcare data leaks, and policy violations using behavioural ML across M365, HR signals, and physical badge data.

Licensed via: E5 / E5 Compliance / BP add-on

Compliance

eDiscovery (Premium)

Legal hold, custodian comms, defensible review with predictive coding, near-duplicate detection, email threading. Standard tier covers basic search; Premium covers full litigation workflow.

Licensed via: E3 (Standard) · E5 (Premium)

Compliance

Audit (Standard / Premium)

Unified audit log across M365 — admin actions, file access, mailbox events. Standard retains 180 days; Premium retains 1 year plus high-value crucial events for forensic investigations.

Licensed via: E3 (Standard) · E5 (Premium)

Compliance

Compliance Manager

Pre-built assessment templates for ISO 27001:2022, DPDPA, NIST CSF, RBI Cyber Security Framework, SEBI CSCRF and 300+ others. Track control implementation, evidence and improvement actions in one workspace.

Licensed via: E3 (basic) · E5 (premium templates)

Compliance

Records Management

File plan, retention labels with event-based triggers, disposition review and proof-of-records. Used by financial services for SEBI 8-year retention and by healthcare for DPDPA compliance.

Licensed via: E5 / E5 Compliance

Compliance

Communication Compliance

ML-based detection of harassment, market abuse, regulatory violations and IP leakage across Teams, email and Yammer. Pre-tuned classifiers for Indian + global regulators.

Licensed via: E5 / E5 Compliance

Governance

Unified Catalog

Searchable inventory of every data asset across M365, Azure, SQL Server, Snowflake, Databricks, Power BI, and Fabric. Replaces the legacy Azure Purview UI with a modernised catalog experience.

Licensed via: Pay-as-you-go (Azure metering)

AI Security NEW

DSPM for AI

Visibility into how Microsoft 365 Copilot, copilot agents, ChatGPT, Gemini, Claude and other AI tools handle your sensitive data. Detects risky prompts, oversharing, jailbreaks and unsanctioned AI use. GA worldwide April–May 2026.

Licensed via: E5 · BP Purview add-on · E7

AI Security NEW

Purview for Agents

Apply Insider Risk Management and audit to Copilot agent actions. Treat AI agents as identities — log, govern, and gate them. Newly GA in 2026.

Licensed via: E5 / E5 Compliance + agent licence

Governance

Data Health & Quality

Define data quality rules, score datasets, and alert on exceptions. Health Controls translate policy into actionable posture across the catalog. Advanced resource sets cut scan cost on partitioned data.

Licensed via: Pay-as-you-go (Azure metering)

How you license Microsoft Purview in India

Five ways to buy Purview. Most Indian enterprises take Path 2 or 3; SMBs increasingly take Path 4 — the Business Premium Purview add-on — to get advanced DLP, Insider Risk and DSPM for AI without jumping to E5. We size the cleanest path against your current M365 plan and quote it in INR.

Capability M365 E3 M365 E5 E5 Compliance add-on BP Purview add-on (NEW) M365 E7
User cap Unlimited Unlimited Unlimited (on top of E3) ≤ 300 (Business Premium tenant) Unlimited
Sensitivity Labels — manual
Sensitivity Labels — auto-classification
Basic DLP (Exchange / SP / OneDrive)
Advanced DLP (Teams chat + endpoint + adaptive)
Insider Risk Management
eDiscovery Standard Premium Premium Premium Premium
Audit Standard (180-day) Premium (1-year) Premium Premium Premium
Compliance Manager (premium templates) Basic
Records Management
Communication Compliance
DSPM for AI
Unified Catalog (data governance) Limited Limited Limited

Beyond M365: Unified Catalog, Data Map and Data Quality are licensed pay-as-you-go through Azure metering — independent of any M365 plan. We size the Azure spend for your data estate (SQL, Snowflake, Databricks, Fabric) separately if data governance is in scope.

Mapping Purview to Indian regulators

Purview ships with assessment templates for the regulators Indian buyers actually live under. Here is how each maps to the modules above — and where Purview alone will not get you to the finish line.

DPDPA 2023

Digital Personal Data Protection Act

DPDP Rule 6 lists seven security safeguards (encryption, access control, logging, continuity, retention, processor contracts, technical & organisational measures). Purview Audit + DLP + Sensitivity Labels + Insider Risk cover six of seven; the seventh (processor contracts) is a contractual control we surface in Compliance Manager evidence.

→ Compliance Manager DPDPA template + Audit Premium + Sensitivity Labels

CERT-In Directions

180-day log retention + 6-hour incident reporting

CERT-In requires 180-day retention of logs and 6-hour breach reporting. Purview Audit Standard hits the 180-day bar out-of-the-box; Audit Premium extends to 1 year. Defender XDR + Sentinel handle the 6-hour reporting flow.

→ Audit Standard / Premium + Sentinel integration

RBI CSF

Reserve Bank of India Cyber Security Framework

RBI CSF Annexures 1 + 2 mandate baseline controls for banks and NBFCs. Compliance Manager includes a pre-built RBI CSF assessment template. Records Management satisfies retention; Insider Risk addresses internal threats; Communication Compliance covers market abuse for treasury teams.

→ Compliance Manager RBI CSF + Records Mgmt + Insider Risk

SEBI CSCRF

Cyber Security & Cyber Resilience Framework

SEBI CSCRF (effective 2026) requires SEBI-regulated entities to implement defined cyber-security controls. Purview's Compliance Manager has a SEBI CSCRF assessment; Audit Premium covers the audit-trail requirement for 8-year financial records.

→ Compliance Manager SEBI CSCRF + Audit Premium + Records Mgmt

ISO 27001:2022

ISMS — international baseline

Purview deployed correctly addresses ~56 of 93 Annex A controls — primarily A.5 Organisational, A.8 Technological, parts of A.6 People. Compliance Manager walks the ISO 27001:2022 template end-to-end; we export the evidence pack for your Stage 1 auditor pre-read.

→ Compliance Manager ISO 27001 + Sensitivity Labels + DLP

NIST CSF 2.0

Govern, Identify, Protect, Detect, Respond, Recover

For Indian subsidiaries of US or global parents: Compliance Manager has a NIST CSF 2.0 assessment template. Identify and Protect map cleanly to Purview; Detect / Respond / Recover require Defender XDR + Sentinel for completeness.

→ Compliance Manager NIST CSF + DLP + Insider Risk

How Ogma rolls out Microsoft Purview

Five-stage delivery from licensing decision to managed operations. Most engagements hit "running & tuned" within 8–12 weeks for a 500-seat tenant; large estates with non-M365 data sources extend depending on Unified Catalog scope.

01

Discovery & sizing

Workshops with IT, Legal, Compliance and Risk to define scope: which regulators apply, which data sources are in-scope, where the existing classification (if any) lives. Output: licensing recommendation (E3 + add-on vs E5 vs Business Premium add-on) with INR pricing and a control-to-module map.

02

Design

Sensitivity label taxonomy (Public / Internal / Confidential / Highly Confidential), DLP policy matrix, Insider Risk indicator selection, Audit retention plan, Compliance Manager assessment scoping. Reviewed and signed off before deployment touches the tenant. (Side note for IT teams running parallel projects: if you need your <a href="/tools/tenant-id-finder" style="color:var(--pv-indigo-soft);">Microsoft 365 / Entra tenant ID</a> for vendor integrations during the same window, our free domain-based lookup returns it without any portal login.)

03

Pilot rollout

Labels deployed to a pilot group (typically Legal + Finance + a business unit). DLP policies run in audit-only mode. Insider Risk Adaptive Protection learns baseline behaviour for 14–30 days. Tuned weekly to cut false-positive noise before broader rollout.

04

Tenant-wide rollout

Mandatory labelling enforced. DLP moves to enforce mode with user override + business justification. Auto-labelling rules turned on for the highest-risk data types (Aadhaar, PAN, credit card, source code). Compliance Manager evidence collection automated.

05

Managed operations

24×7 monitoring of Insider Risk alerts, DLP incident triage, eDiscovery support, quarterly Compliance Manager re-assessment, and integration with your existing SOC (Defender XDR + Sentinel + Fortinet, if relevant). Monthly business review with the Risk + IT + Compliance owners.

Why Indian buyers choose Ogma for Purview

Purview is one of the easiest Microsoft products to mis-deploy — most failed rollouts come from over-classifying day one, mis-tuned DLP that swamps users with prompts, or Compliance Manager that nobody updates after Stage 1 audit. Our delivery is shaped to avoid each of those.

Microsoft Solutions Partner

Authorised Microsoft Solutions Partner for Modern Work + Security. Direct Microsoft escalation paths, pre-release feature access, and the same engineering team for both licensing and deployment — no handoffs.

INR billing, GST invoiced

Licence procurement through our CSP — INR-denominated quotes, GST-compliant invoices, full input tax credit eligibility. No FX exposure on monthly billing. Consolidated invoice covers M365 + Purview add-ons + Azure metering.

Tuned, not just turned on

Most failed Purview deployments are mis-tuned, not unconfigured. Our pilot phase runs DLP in audit-only mode for 30 days before flipping to enforce. Insider Risk Adaptive Protection learns your baseline, not Microsoft's default. Result: false-positive rates well under 5%.

Cross-vendor SOC integration

Purview alerts feed into the same SIEM you use for Fortinet, Defender XDR, and Sentinel. We build the Sentinel data-connector pipeline, write the playbooks, and run the SOC — so a DLP incident, an EDR alert, and a firewall block all surface as one investigation.

Get a sized Purview quote

Tell us your user count, current M365 plan, and the regulators you live under. We send back the recommended licensing path (E5 vs E3 + add-on vs Business Premium add-on), the INR-equivalent quote with GST, and a one-page control-to-module map for your CISO. Quote within 2 hours during IST business hours.

Pricing inquiry

Get a tailored quote in 2 hours for Microsoft Purview Licensing &amp; Deployment

Senior engineers size and price this for your environment. No call required — we'll email the formal quote within 2 business hours.

Term
Authorised partner. Sales response in 2 business hrs.

Frequently asked questions

They are now unified under one brand. The data-governance product previously sold as "Azure Purview" is the Unified Catalog half of today's Microsoft Purview. The compliance and data-security half (DLP, sensitivity labels, Insider Risk, eDiscovery, Audit) was always part of Microsoft 365 / Office 365 compliance. Microsoft folded both into one console and one brand in 2023, and the modernised Unified Catalog GA rolled out from West Central US in 2026. For buying purposes you still license the M365 half via E3/E5/add-ons and the governance half via Azure metering — they are separate cost centres.

No, not anymore. Until late 2025 the answer was yes — Insider Risk, advanced DLP, eDiscovery Premium and DSPM for AI required E5 or the E5 Compliance add-on, neither of which were available to Business Premium tenants. In 2026 Microsoft launched a Business Premium Purview add-on that brings the advanced Purview features to ≤300-user tenants without forcing the Business Premium → E5 jump. Ask us for an INR quote with applicable GST and any current CSP promotion.

Data Security Posture Management for AI is a Purview module that monitors how Microsoft 365 Copilot, copilot agents, and third-party AI tools (ChatGPT, Gemini, Claude) handle your sensitive data. It detects oversharing (when Copilot surfaces data the user should not see), risky prompts (employees pasting secrets into chatbots), jailbreak attempts, and unsanctioned AI use across the estate. It went GA worldwide between April and May 2026. If you are deploying Copilot, you should deploy DSPM for AI at the same time — without it you have no visibility into what Copilot is doing with your data.

Cleanly. Purview alerts (DLP, Insider Risk, Communication Compliance) surface in the unified Microsoft Defender XDR portal alongside endpoint, identity and email alerts. From there they flow into Microsoft Sentinel via the M365 Defender data connector — so DLP incidents, Insider Risk alerts and audit events land in the same SIEM as your firewall and EDR data. We build the Sentinel data pipeline, write the playbooks, and feed the SOC in a single integration during deployment.

Yes, in two ways. (1) The Unified Catalog (governance half) scans SQL Server, Azure SQL, Snowflake, Databricks, Synapse, S3, ADLS, Power BI and on-prem databases — full lineage and classification. (2) Purview DLP for endpoints classifies and blocks sensitive data exfiltration on Windows and macOS, regardless of which app is moving the data. For SaaS apps not on the native list, Defender for Cloud Apps (CASB, included in M365 E5) extends DLP to ~28,000 sanctioned and shadow-IT apps.

Microsoft operates Office 365 / Microsoft 365 data centres in Mumbai, Pune and Chennai. India is a Local Region Geography — Exchange Online, SharePoint, OneDrive, Teams, and the Purview compliance store for tenants provisioned in India are stored at rest in India. Audit logs, sensitivity-label policies, DLP policies, eDiscovery cases, Insider Risk telemetry — all India-resident. For customers needing stronger commitments, Microsoft offers the Advanced Data Residency add-on. Unified Catalog (Azure-side) data residency depends on the Azure region you deploy it in (Central or South India both available).

Purview is bundled, not standalone. You buy it through one of the M365 SKUs (E3 with limited features, E5 with the full suite, the E5 Compliance add-on layered on top of E3, or the Business Premium Purview add-on for ≤300-user tenants). The Unified Catalog half — data governance for non-M365 estates — is billed Azure pay-as-you-go and sized against the data sources in scope. We quote INR-equivalents with applicable GST and current CSP discount, plus the deployment + managed-operations engagement separately as a fixed-scope project. Use the form on this page with your user count, current M365 plan and the regulators that apply to you — we send a sized quote within 2 hours during IST business hours.

Yes. Most enterprises arrive with a 4-tier scheme (Public / Internal / Confidential / Restricted, or similar). Purview's sensitivity-label model is flexible enough to mirror that exactly — including custom watermarks, encryption rules per tier, conditional access via Entra ID, and downstream behaviour in Office apps. We map your existing taxonomy to Purview labels in the design phase rather than forcing a new naming convention onto the business.

Both. Smaller estates often take a one-off deployment + 30-day hand-holding and then run it in-house. Mid-market and enterprise typically take a managed-operations contract — 24×7 alert triage on Insider Risk and DLP incidents, monthly tuning, quarterly Compliance Manager re-assessment, eDiscovery hold-management on demand, and integration with our cross-vendor SOC. The managed contract is priced per-user per-month and is independent of the licensing.

Ready to deploy Microsoft Purview?

Tell us your user count, current M365 plan, and the regulators you live under — we send back a sized quote in INR with GST and a one-page control-to-module map for your CISO. Within 2 hours during IST business hours.

Get a Sized Purview Quote →