Feedback by UserVoice

Office 365 Security & Compliance

We have partnered with UserVoice, a third-party service and your use of the portal and your submission is subject to the UserVoice Terms of Service & Privacy Policy. Please do not send any novel or patentable ideas, copyrighted materials, samples or demos for which you do not want to grant a license to Microsoft.

Welcome to the Security (Protection) & Compliance UserVoice forum. We’re happy you’re here! If you have suggestions or ideas on how to improve Security or Compliance related features in O365, we’d love to hear them!

How it works
◾Check out the ideas others have suggested and vote on your favorites
◾If you have a suggestion that’s not listed yet, submit your own — 25 words or less, please
◾Include one suggestion per post

Thanks for joining our community and helping improve these features in Office 365!

Need Tech Support? Please see the O365 Community for the product or feature you are having issues with, or open a support ticket through your Office 365 administrator portal.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. 'Classify Content as a record' should be optional step for all labels

    Currently, users will need to change the label on an item to 'declare it as a record' e.g. move from a label of 'HR (retain for 7 years)' to a label of 'HR Record (retain for 7 years + locked as record).

    Would it be possible to allow users to simply 'declare item as record' on items that have already been classified with an existing label without the need for them to change to a different label?

    This allows content already correctly classified to be locked from further editing at a given point in time. The feature could be configured…

    11 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
  2. Provide a return value for Set-RetentionCompliancePolicy and New-RetentionCompliancePolicy

    With the many limitations in the current UI using PowerShell is the only want to manage the Compliance Center at scale, in particular, Retention Policies.

    New- and Set- should return a value on success/fail. for example, we can programmatically set a more than 100 SP Sites on a single policy, without receiving an error.

    11 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
  3. Add retention tags for Notes and Calendar

    Please add the Notes and Calendar from the Exchange Admin Center to new Compliance / Security section

    10 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
  4. Retention policies for Teams/Chats by AD group

    Retention policies for Teams messages and chats should be assignable by AD group instead of having to manually specify each user individually.

    10 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
  5. Alert Policy for changes to Retention Policy

    It would be great if we could set up an alert policy for when someone makes changes to a Retention Policy in Security and Compliance. We are moving away from Litigation Hold to Retention Policies and it would be very easy for someone to remove the policies by accident or intentionally.

    10 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
  6. Recording a log of files deleted by retention policy

    Add a feature that can record a log of files deleted by retention policy which set to delete content after its retention period.
    It would be nice if we could see the file names and the deleted data in the log.

    9 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
  7. Disposition review using PowerAutomate

    The Disposition Review dashboard show a list of many documentens that have to be reviewed when using in large companies. It would be useful to create Dispotition Review approval workflows to managed them.

    7 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
  8. Provide the ability to call a Microsoft Flow in a Retention Label in Security and Compliance Center similar to an IRM policy in a library.

    When configuring a retention label in security and compliance center a Microsoft Flow should be an option to execute when executed. Similar functionality exists in Information Rights Management in a document library that can call a SharePoint designer workflow. Flow should be integrated into SCC to accommodate custom actions.

    7 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
  9. OneDrive retention policy for terminated employee

    Currently, OneDrive retention policy only applies to when the OneDrive file was created or modified. I like to have the ability to set a retention policy for a Terminated employee's OneDrive contents over 30 days.

    7 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
  10. Include comments in the audit log

    In Records Manager we can Extend Retention and provide a comment. The ExtendRetention event is captured in the Audit Log but unfortunately the Comment is not. In fact, we're not sure where the comment goes but at least it should be in the Audit log for this event.

    6 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
  11. Adding Preservation Lock to Labels

    Labels are a great tool for creating records but the one item I currently see missing is the ability to do Preservation Lock for labels that are marked as records when retention is used. The standard retention policy doesn't necessarily work here because there can be multiple labels published to a site collection and using keywords from a data governance retention policy is not going to be as accurate as a label that gets applied by default in a document library. This is specifically important to make sure compliance is met for the 17a-4 rule that may pertain to multiple…

    6 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
  12. Change retention policy functionality for Teams so that it works on teams below 10mb in size

    Change retention policy functionality for Teams so that it works on teams below 10mb in size.

    As of today, any Team has to be at least 10mb in size for any retention policy to work on that particular team. This is because the Managed Folder Assistant will not run for mailboxes below that size limit. I have yet to understand the reasoning behind this limitation??

    For Teams the limitation as described is especially problematic in that the mentioned 10mb size is calculated based solely on the "totalitemsize" property on the team's mailbox. This is a problem, since that value does…

    6 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
  13. Sharepoint Subsite Retention

    Subsite deletion error when under a global retention.
    I understand that Site Roots within Site collections are forbidden to be deleted, as the Preservation Hold Folder is stored there.
    Today, the same message appears when attempting to delete Subsites within the Site Collection, Deletion is forbidden.
    For our environment, this is very difficult to manage, as subsites are created and deleted very often.
    What about storing in the Preservation Hold folder the entirety of subsites instead of blocking the deletion of the subsite?

    6 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
  14. Retention of security / compliance Optional addition request

    Data Governance> Retention> Create> Choose locations
    I'd like to add "Teams sites" for holding MicrosoftTeams SharePoint

    6 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
  15. Show expiry date on documents in OneDrive and all ShrePoint Online Sites from the global retension labels

    Having set up a retention label to delete all documents in users OneDrive's and SharePoint Sites if not modified in last 7 years the users do not get to see a expiration date against all documents.

    The expiry notice does work with Email Retention, it would be good if the same was seen on documents

    4 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
  16. retention permanently delete

    Allow deletion policy to permanently delete files instead of going to recycle bin. The old Compliance Center in SharePoint Online had this option but it is not in the O365 version. This is a requirement for legal compliance.

    4 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
  17. Ability to change retention on a previously published label

    Would be nice to have the ability to change a retention date of a label and have it apply to all messages the label was previously applied to (record label and none record label).

    4 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
  18. File plan CitationUrl length too small

    The max length for the CitationUrl field is 64 chars. This is way too small for a URL that will be referring to specific page. For example: https://www.gov.uk/government/publications/guide-to-the-general-data-protection-regulation. Please increase to 254 chars.

    4 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)

    thanks – the import file plan option is limited to 64 characters, but you should be able to edit file plan descriptors from the compliance center, from the create label wizard in the records management solution, and should be able to provide longer urls via that approach.

  19. Allow version deletion in sites with retention policy applied

    Currently users can delete documents in sites with retention policies applied. When a user tries to delete a version of a document, they get an error message. Since versions of documents show up in the Preservation Hold Library as separate documents, it would improve consistency of behavior if users could also delete versions of a document.

    4 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
  20. Retention policies to cover only the In-Place Archive mailboxes

    Adding retention policies to cover only the In-Place Archive mailboxes and not the main mailbox.

    4 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
  • Don't see your idea?

Feedback and Knowledge Base