Skip to main content
🦉
Message CenterMicrosoft 365 Updates
HomePermissionsTenant FinderM365 ReportPortfolio
🦉
M365 Message Centerby Cengiz YILMAZ

Track the latest updates, features, and announcements for Microsoft 365 services. Comprehensive archive of service updates and important changes.

Quick Links

HomePermissionsTenant FinderM365 ReportPortfolio

Connect

© 2026 M365 Message Center. Created with ❤ by Cengiz YILMAZ

Data sourced from Microsoft 365 Message Center • Not affiliated with Microsoft

  1. Home
  2. /
  3. MC1217153

Microsoft Purview compliance portal: Information Protection – Email attachment preview in Activity Explorer

Informational

Message ID

MC1217153
View in Admin Center

Roadmap ID

543969
View in Roadmap

Services

Microsoft 365 suite
Microsoft Purview

Affected Platforms

Web

Summary

Starting February 2026, Microsoft Purview Activity Explorer will let admins preview flagged email attachments in Exchange Online without downloading them, simplifying investigations. This feature is enabled by default, requires no action, and does not change existing DLP or Information Protection policies.

Details

Updated February 17, 2026: We have updated the timeline. Thank you for your patience. 

Introduction

We’re enhancing Activity Explorer in the Microsoft Purview compliance portal to provide better visibility into sensitive data detected in Exchange Online. Today, admins can only view email message bodies when investigating Data Loss Prevention (DLP) or Information Protection events. With this update, admins will be able to preview flagged email attachments directly within Activity Explorer—without downloading the email—simplifying investigations and reducing risk exposure.

This message is associated with Microsoft Roadmap ID 543969.

When this will happen

General Availability (Worldwide) rollout will begin in early February 2026 and complete by end of February 2026 (previously early February).

How this affects your organization

Who is affected: Admins who use Microsoft Purview Activity Explorer to investigate Data Loss Prevention (DLP) or Information Protection events in Exchange Online.

What will happen:

  • Admins will be able to preview email attachments flagged for sensitive data directly within Activity Explorer:

    • user settings

  • A preview pane will appear for supported file types.
  • Email downloads will no longer be required for most investigations.
  • The feature will be enabled by default; no configuration changes will be required.
  • Existing DLP and Information Protection policies will remain unchanged.

What you can do to prepare

  • No action is required. This update will take effect automatically after rollout.
  • (Optional) Communicate this improvement to your security and compliance teams.
  • (Optional) Update internal investigation workflows or documentation.

Compliance considerations

No compliance considerations identified. Review as appropriate for your organization.

Timeline

Published
Jan 13, 2026
Message published to Message Center
Updated
Feb 17, 2026
Message content updated
End Date
Mar 30, 2026
Message timeline ends

Tags

#Updated message#New feature#User impact#Admin impact

Category

Stay Informed

Related Messages

Similar updates

MC1234661

DLP policies will be able to block Copilot processing of sensitivity‑labeled files in all storage locations

Feb 19, 2026
MC1217640

Microsoft Purview | Information Protection - Content Explorer: Unscanned data and Classification History summary metrics

Jan 14, 2026
MC1056265

Microsoft Purview: New data security controls for detecting sensitive data shared over the network

Apr 15, 2025
MC1046161

Microsoft Purview | Data Loss Prevention: New inline protection controls for AI apps in Microsoft Edge for Business

Apr 2, 2025
MC1106875

Microsoft Purview | ​Information Protection: On-demand classification of files on Windows devices for sensitive data

Jun 30, 2025