Summary of governance, lifecycle, and compliance capabilities for Loop
As a Compliance Manager or IT administrator, it's crucial to stay up-to-date on the latest governance, data lifecycle, and compliance posture for the software solutions being used in your organization. This article details the capabilities available and not available yet for Microsoft Loop.
Summary table of admin management, governance, lifecycle, and compliance capabilities based on where Loop content is stored
Category | OneDrive or SharePoint | SharePoint Embedded |
---|---|---|
This column applies to Loop content:
|
This column applies to Loop content:
|
|
Foundations | --- | --- |
Admin toggles | Admin Toggles exist to turn on or off creation of and live rendering of Loop components in the Microsoft 365 ecosystem. If you enable Loop components in the Microsoft 365 ecosystem via the primary toggle, there are additional toggles to turn on or off Loop components in Outlook or Teams chats and channels. There's also an additional toggle to turn on or off Loop components for collaborative meeting notes. | Admin Toggle exists to turn on or off creation of content stored in SharePoint Embedded, including Loop Ideas and new workspaces. |
GDPR | GDPR data subject requests can be serviced as part of the Microsoft Purview portal and Purview eDiscovery workflows | GDPR data subject requests can be serviced as part of the Microsoft Purview portal and Purview eDiscovery workflows |
EUDB | EUDB compliant - What is the EU Data Boundary? | EUDB compliant - What is the EU Data Boundary? |
Data Security, Devices | --- | --- |
Intune | Basic Intune Device Management Support exists for Loop app on iOS and Android. | Basic Intune Device Management Support exists for Loop app on iOS and Android. |
Conditional Access | Conditional Access is supported. | Conditional Access supported. |
Information Barriers | Information Barriers are enforced. | Information Barriers are enforced. |
Customer Key | Customer Lockbox is supported. | Customer Lockbox is supported. |
Programmatic APIs for Loop content | Yes, they're files in OneDrive or SharePoint and all current functionality applies. | Guest app access to Loop workspace containers is available. This enables third party export and eDiscovery tools, migration tools, tools used to communicate in bulk to end-users about their content such as compliance requirements, and developer APIs. Use PowerShell to Get and Set guest app permissions. |
Data Lifecycle | --- | --- |
Multi-Geo | Multi-Geo capabilities are supported, including creation of .loop files in a user's OneDrive in the geo that matches the user's preferred data location and ability to move the user's OneDrive when their preferred data location changes. | Multi-Geo capabilities for Loop workspaces are supported using the same mechanism as SharePoint sites, including rehome and creation in the tenant's default geo. Manage the location of shared Loop workspaces like you would other collaboration artifacts, like SharePoint Communication sites. Multi-Geo capabilities for Copilot Pages are supported. Copilot Pages is a user-owned workspace, and is created in the geo that matches the user's preferred data location. Not Yet Available: Shared workspaces are not yet created in the user's preferred data location, they are instead created in the tenant's default geo, like SharePoint Communication sites are. |
User leaves organization | When a user leaves an organization, OneDrive retention policies apply to the .loop files in their OneDrive just as they do to other content created by the user. See Loop storage for more information. | Manage the lifetime of shared Loop workspaces like you would other collaboration artifacts, like SharePoint sites. Manage the lifetime of user-owned personal Loop workspaces like Copilot Pages, like you would manage the user's OneDrive. See Loop storage for more information. |
Loop workspaces | n/a | See Available and Admin Management not yet available. |
Recycle bin | End user Recycle bin for deleted content is available. | End user Recycle bin for deleted content is available in each Loop workspace. Not Yet Available: End user Recycle bin for deleted Loop workspaces. |
Version history | Version History export in Purview or via Graph API is available. Loop files in OneDrive or SharePoint follow the same file versioning settings as other files. | Version History export in Purview or via Graph API is available. Loop files in SharePoint Embedded are configured at 50 versions and no admin setting is available to change this. |
Quota | Loop files in their OneDrive and SharePoint locations follow the quotas of those storage containers. | One Loop workspace corresponds to one SharePoint Embedded container. Loop SharePoint Embedded containers have a default quota of 1TB. There is no admin setting available to change this. |
Audit logs and events | Audit logs for all events: search and export Microsoft 365 service events for security and compliance investigations
|
Audit logs for all events: search and export Microsoft 365 service events for security and compliance investigations
|
Audit log access | Audit logs are retained, can be exported, and can be streamed to third party tools | Audit logs are retained, can be exported, and can be streamed to third party tools |
eDiscovery | --- | --- |
Search, Collection, Review, Export (Purview) | Microsoft Purview eDiscovery supports search and collection, review (premium license required for admin), and export (premium license required for admin) as HTML or original. You can also download and reupload the files to any OneDrive to view them in their native format. Not Yet Available: Full text search of content within .loop files in Purview review sets. |
Microsoft Purview eDiscovery supports search and collection, review (premium license required for admin), and export (premium license required for admin) as HTML or original. You can also download and reupload the files to any OneDrive to view them in their native format. Not Yet Available: Full text search of content within .loop files in Purview review sets. |
Export (Third Party Tools) | Microsoft Graph API export support. | Microsoft Graph API export support. Use Get-SPOApplication to view guest application permissions. Use Set-SPOApplication to manage guest application permissions. |
Legal Hold | Legal Hold support to ensure content isn't deleted (as related to litigation and security investigations) and stored in the Preservation Hold Library. | Legal Hold support to ensure content isn't deleted (as related to litigation and security investigations) and stored in the Preservation Hold Library. |
Microsoft 365 retention and deletion | --- | --- |
Retention policies | Retention policies from Microsoft Purview Data Lifecycle Management are enforced for all .loop files. | Retention policies from Microsoft Purview Data Lifecycle Management configured for all SharePoint sites are enforced for all .loop files or alternatively can be configured per Loop workspace *. |
Retention labels | Retention labels from Microsoft Purview Data Lifecycle Management and Microsoft Purview Records Management are supported for .loop files by applying published labels in OneDrive or SharePoint, or automatically applying the labels. | Retention labels from Microsoft Purview Data Lifecycle Management and Microsoft Purview Records Management are supported for .loop files by automatically applying the labels. Not Yet Available: An end-user experience isn't yet available to apply, view, or update a retention label for components and pages. |
Information Protection | --- | --- |
Sensitivity labels | Sensitivity labeling is available for Loop pages and components. | Sensitivity labeling is available for Loop pages and components, and admin configurable for individual Loop workspaces via PowerShell and rolling out in the Loop app for end users. |
Data Loss Prevention | Data Loss Prevention (DLP) rules are enforced on content with end-user policy tip support. | Data Loss Prevention (DLP) rules are enforced on content with end-user policy tip support. |
* If you need to specify an individual Loop workspace for a retention policy or another compliance feature, specify the workspace as you would a SharePoint site, by its URL. To locate this URL, sign in to the SharePoint admin center with the SharePoint Embedded administrator role. Then navigate to Containers > Active containers or Deleted containers where you can view the details of a selected Loop workspace. From the flyout pane, General tab, copy the container URL.
Summary of governance, data lifecycle, and compliance capabilities not yet available
Available admin capabilities
For detailed information on existing capabilities in SharePoint Admin Center and PowerShell:
- Available: Manage SharePoint Embedded containers in SharePoint Admin Center
- Available: SharePoint Embedded container management in PowerShell
Not yet available
The following sections detail capabilities that are not yet available for Microsoft Loop to make it easier to evaluate the smaller list of capabilities your organization might require before using Microsoft Loop. As denoted in the summary table, the content applies to Loop workspaces only.
Admin Management not yet available
- When users delete an entire Loop workspace, that Loop workspace isn't available in an end-user visible Recycle bin. Furthermore, restoring the Loop workspace using admin tooling doesn't update in the Loop app user experience. The user would need to visit a saved page link for a restored workspace in order to see it again. Microsoft Roadmap ID 421615 addresses this.
- When an admin deletes a Loop workspace, it will not be removed from the user's view of Loop workspaces. When users click on the deleted Loop workspace, it displays an error. Microsoft Roadmap ID 421613 addresses this.
- When an admin modifies the list of owners or members of a Loop workspace through the SharePoint Admin Center or via PowerShell, the changes won't be visible to the users within that Loop workspace. Changes to the workspace membership are only updated in the user's view of the Loop app if they're made directly within the Loop app itself. Microsoft Roadmap ID 421613 addresses this.
- All shared Loop workspaces, including Ideas, are created as tenant-owned, in the tenant default geo like SharePoint Communication sites, not in the creator's preferred data location. Copilot Pages is created as user-owned, in the geo that matches the user's preferred data location. See storage management after user departure for more information on managing workspaces. Microsoft Roadmap ID 422729 addresses Ideas functioning as a shared Loop workspace.
- Individual controls for guest or external sharing of a specific Loop workspace isn't available. Microsoft Roadmap ID 421614 addresses this.
eDiscovery capabilities not yet available
- Full text search of content within .loop files in review sets.
Microsoft 365 retention and deletion capabilities not available
- Retention labels can't be applied to workspaces (this is by design, not a Loop limitation) and an end-user experience to apply, view, or update a retention label for components and pages isn't yet available. Microsoft Roadmap ID 397755 addresses this.
Managing Loop in your organization
By reviewing this information, you can make an informed decision on whether Microsoft Loop is ready for use as a software solution in your organization. As always, we continue to update this and other documentation to provide the compliance status of Microsoft Loop to help you make the best decisions for your organization.