+- must-keep

+4. Select **Save** when you're finished specifying email addresses and Windows versions. It might take up to 8 hours for these changes to take effect.

+- If youΓÇÖre a member of the Global admin or Global reader roles, when you sign in to the Microsoft 365 admin center, youΓÇÖll see a one-time prompt to go to the Experience insights (preview) dashboard. You can access it at any time by selecting Experience insights (preview) from the admin home page.

+With this new feature, you'll be able to identify the sentiment that is associated with each topic available. The sentiment is calculated for each NPS feedback comment and tied to a specific topic. With this new addition, you can discover what trending topics your users are talking about and understand the feeling they're experiencing regarding that specific topic.

+With the new sentiment per topic feature on the NPS survey insights dashboard, you'll be able to:

+To access the sentiment per topic insights, sign in to the Microsoft 365 Admin Center and go to **Health** > **Product feedback** > **NPS survey insights tab**.

+Based on your feedback, we're introducing a new function in the NPS survey insights dashboard that allows Admins like you to filter the Net Promoter Score (NPS) data and insights per date, so that you can access details based on your date range preference.

+With this change, you'll be able to look at the NPS survey insights based on the following date ranges:

+ Title: "Turn your Personal Bookings page on or off"

+- must-keep

+description: "Steps to turn your Personal Bookings page on or off"

+# Turn your Personal Bookings page on or off

+ Bookings is a time management solution that provides a simple and powerful scheduling page with seamless integration with outlook. It lets people schedule a meeting or appointment with you through a booking page that integrates with the free/busy information from your Outlook calendar. You can create custom meeting types to share with others so they can easily schedule time with you based on your availability and preferences. You both get an email confirmation and attendees can update or cancel scheduled meetings with you from your Personal Bookings page.

+For more information on how your users can work with Bookings with me, see the following articles:

+Personal Bookings needs the **Microsoft Bookings App (service plan)** assigned to users for them to be able to access Bookings. This service plan can be enabled/disabled by tenant admins. So, if **Microsoft Bookings** isn't assigned to them, Bookings access will be denied to users even if they are in one of the previously listed SKUs.

+

+1. Check your EwsApplicationAccessPolicy by running the following command:

+ - To turn off Personal Bookings for your organization set the **EnforceBlockList** policy and add **MicrosoftOWSPersonalBookings** to the blocklist by running the following command:

+

+

+1. Check the individual's **EwsApplicationAccessPolicy** by running the following command:

+Also, Bookings with me won't create a new mailbox for each Bookings with me page. Note that Bookings with me and Personal Bookings are terms used interchangeably.

+- must-keep

+Here are the steps to add a new service.

+> [!NOTE]

+1. Under **Shared booking pages**, either select the page for which you want to create a new service, or create a new booking page and then select it from the available pages.

+1. On the shared booking page, select **Services**, and then select **Add new service**.

+1. On the **Basic details** page, add your selections.

+ **Location**: This location is what will be displayed on confirmation and reminder emails for both staff and customers, and it will be displayed on the calendar event created for the booking.

+ - Appointments won't contain a meeting option, and all of the meeting-related fields that appear when **Add online meeting** is enabled won't be shown.

+ The time will be blocked on the staffΓÇÖs calendar and impact free/busy information. This means if an appointment ends at 3:00 pm and 10 minutes of buffer time has been added to the end of the meeting, the staffΓÇÖs calendar will show as busy and nonbookable until 3:10pm. This can be useful if your staff needs time before a meeting to prepare, such as a doctor reviewing a patientΓÇÖs chart, or a financial advisor preparing relevant account information. It can also be useful after a meeting, such as when someone needs time to travel to another location.

+ **Let customers manage their appointment when it was booked by you or your staff on their behalf**: This setting determines whether or not the customer can modify or cancel their booking, provided it was booked through the Calendar tab on the Bookings Web app.

+ **Language**: Select the default language for the booking from the drop-down list.

+1. On the **Availability options** page, you can see the options you've selected from your **Booking page** for your scheduling policy and availability for your staff. For more information, see [Set your scheduling policies](set-scheduling-policies.md).

+1. On the revamped **Assign staff** page, you can smoothly assign and remove assigned staff members from a service. There are two more controls added on this page:

+ - **Assign any of your selected staff for an appointment**: When this option is selected, the booking will be scheduled with a single staff member.

+ - **Multiple staff**: This feature allows you to create a service with multiple staff members. The booking will be scheduled with all of the assigned staff members of the service. You can refer to this service as N:1 booking service.

+ - **Allow customers to choose a particular staff for booking**: This setting enables customers to view and choose from among specific staff members for the booking.

+ - **Select staff**: You can choose specific staff members for bookings created using this service.

+1. **Custom fields** can be useful when collecting information that is needed every time the specific appointment is booked. Examples include insurance provider prior to a clinic visit, loan type for loan consultations, major of study for academic advising, or applicant ID for candidate interviews. These fields will appear on the Booking page when your customers book appointments with you and your staff.

+ Customer email, phone number, address, and notes are nonremovable fields, but you can make them optional by deselecting **Required** beside each field.

+1. On the **Notifications** page, you can send SMS messages, set up reminders, and send notifications.

+ **Email confirmation, Email reminders, and Email follow-up**: These notifications are sent out to customers, staff members, or both, when the booking is created or changed, at a specified time before the appointment, and at a specified time after the appointment. Multiple reminder and follow-up messages can be created for each appointment, according to your preference.

+1. There are two more controls available to ease your Service creation journey:

+ - **Default scheduling policy** is on by default. Turn the toggle off if you want to customize how customers book a particular staff member.

+1. Select **Save changes** to create the new service.

+- must-keep

+> Only Microsoft 365 Admins can delete shared booking pages created by end users. We do not support the capability of deleting shared booking pages at a user level. If a user wishes to do so, the request will have to be routed to the respective Microsoft 365 admin.

+ Title: Secure Copilot in Business Standard and Business Premium

+description: "Learn how to secure Microsoft Copilot for Microsoft 365 Business Standard and Microsoft 365 Business Premium."

+search.appverid: MET150

+audience: Admin

+ms.localizationpriority: medium

+f1.keywords: NOCSH

+ - essentials-security

+ - essentials-privacy

+ - essentials-compliance

+ - magic-ai-copilot

+# Secure Microsoft Copilot for Microsoft 365 in Microsoft 365 Business Standard and Microsoft 365 Business Premium

+This article explains the differences in security and compliance controls between Copilot for Microsoft 365 in Microsoft 365 Business Standard and Microsoft 365 Business Premium. This article doesn't attempt to describe the full capabilities of Copilot for Microsoft 365, or the full security and compliance features in Business Standard and Business Premium.

+The following sections contain scenarios to help you better understand how security features in Business Standard and Business Premium can help protect you when you're using Copilot for Microsoft 365.

+## Enable new levels of employee productivity while safeguarding company data and resources

+How can companies enable new levels of employee productivity with tools like Microsoft Copilot for Microsoft 365 while safeguarding company data and resources?

+- Use the following capabilities in **Business Standard** to make sure that unauthorized employees can't use Copilot for Microsoft 365 to gain access to information or confidential data in files that they don't have access to:

+ - Sign in without a password using multifactor authentication and help ensure only authorized users have access to data.

+ - Ensure only enrolled, compliant devices can access Microsoft 365 resources with device-based conditional access.

+ - Wipe all work content, including content generated by Copilot if a device is lost, stolen, or compromised.

+ - Revoke work access on noncompliant devices except Windows devices

+- **Business Premium** extends protection in the following scenarios:

+ - Further prevent external bad actors from getting access to Microsoft 365 resources.

+ - Protect against employee misuse of Copilot for Microsoft 365 by creating conditions to grant internal access.

+ - Reduce the ability for employees or external parties from inappropriately saving or leaking data outside the organization.

+ The following capabilities in **Business Premium** lead to results in those scenarios:

+ - Use biometrics to sign in to your Microsoft 365 account using Windows Hello for Business (enabled through Windows 11 Pro, which is available to Business Premium licenses).

+ - Only grant access to Microsoft 365 resources when specific conditions (identity, device, and location) are met using user-based conditional access.

+ - Require employees or guests to accept the terms of use policy before getting access to resources.

+ - Restrict the use of the Microsoft 365 apps and Teams (and Copilot in these apps) on personal devices.

+ - Prevent saving files to unprotected apps.

+ - Restrict the ability to copy and forward confidential business information with data loss prevention for emails and files.

+## Keep sensitive or personal data from being exposed

+How can companies ensure that sensitive or personal data isn't exposed when using Copilot for Microsoft 365?

+- Use the following capabilities in **Business Standard** to make sure that unauthorized employees can't use Copilot for Microsoft 365 to gain access to information or confidential data in files that they don't have access to:

+ - Change default sharing options in SharePoint and OneDrive.

+ - Prohibit Copilot for Microsoft 365 from including sensitive data that users don't have permissions to view in generated responses.

+ - Exclude sensitive files that users don't have permissions to view from being processed by Copilot.

+- **Business Premium** further extends the protection of sensitive data by requiring sensitivity labels for Microsoft 365 content. These labels help ensure that only employees with specific permissions can use Copilot for Microsoft 365 to access, generate, or share sensitive data. Matching sensitivity labels are automatically applied to any content generated by Copilot for Microsoft 365.

+ The following capabilities in **Business Premium** lead to those protections:

+ - Protect Microsoft 365 data from being accessed by unauthorized users by implementing manual, default, and mandatory content labeling.

+ - Copilot for Microsoft 365 automatically inherits and applies sensitivity labels that match any queried material or references.

+## Support regulatory compliance and eDiscovery requests

+How can companies monitor interactions with Copilot for Microsoft 365 and support related regulatory compliance or eDiscovery requests?

+- In **Business Standard**, companies can achieve the following results:

+ - Monitor, search, and export employee interactions with Copilot for Microsoft 365, and any content generated by Copilot for Microsoft 365.

+ - Define how long content generated by Copilot for Microsoft 365 should be retained within Microsoft 365.

+ The following capabilities in **Business Standard** lead to these results:

+ - Search for and export Copilot interactions by content and keyword search.

+ - Maintain a log of all Copilot for Microsoft 365 interactions within the organization.

+ - Apply retention or deletion policies for Copilot interactions and any generated content.

+- **Business Premium** further extends the support for investigations or other legal processes by asserting a legal hold on material associated with Copilot for Microsoft 365.

+ In **Business Premium**, use eDiscovery (Standard) to search for Copilot interactions by content, keyword search, create cases, assign managers, apply legal hold, and export the search results to investigate incidents and respond to litigation.

+## Appendix

+The available security and compliance features related to Copilot for Microsoft 365 in Business Standard and Business Premium is summarized in the following tables:

+- **Identity and Access Management (Microsoft Entra ID)**:

+ |Scenario|Business<br/>Standard|Business<br/>Premium|

+ ||::|::|

+ |Sign in to Copilot for Microsoft 365 with a single identity|Γ£ö|Γ£ö|

+ |Enforce MFA when accessing Microsoft 365 to use Copilot|Γ£ö|Γ£ö|

+ |Enable end-user password reset, change, and unlock when accessing Microsoft 365|Cloud users|Γ£ö|

+ |Implement Conditional Access policies based on identity, device, and location when accessing Microsoft 365 to use Copilot||Γ£ö|

+ |Enable near real-time access policies enforcement, evaluate critical events, and immediately revoke access to Microsoft 365||Γ£ö|

+ |Require employees or guests to accept terms of use policy before getting access||Γ£ö|

+- **Endpoint Management (Basic Mobility and Security or Intune)**:

+ |Scenario|Business<br/>Standard|Business<br/>Premium|

+ ||::|::|

+ |Push/deploy Microsoft 365 apps to devices and grant access to Copilot in those apps||Γ£ö|

+ |Manage Microsoft 365 app updates||Γ£ö|

+ |Restrict the use of Microsoft 365 apps and Teams (and Copilot in those apps) on personal devices||Γ£ö|

+ |Prevent saving files (including files generated by Copilot) to unprotected apps||Γ£ö|

+ |Wipe all work content (including content generated by Copilot) if a device is lost, stolen, or compromised|Γ£ö|Γ£ö|

+ |Revoke work access on noncompliant devices|iOS, Android|Γ£ö|

+- **Data Security and Compliance (Information Protection)**:

+ |Scenario|Business<br/>Standard|Business<br/>Premium|

+ ||::|::|

+ |Search for Copilot generated data and interactions with eDiscovery capabilities|Search and export results|+ Case management and legal hold|

+ |Audit logs for Copilot interactions|Audit (Standard)|Audit (Standard)|

+ |Apply a manual retention policy for Copilot interactions|Γ£ö|Γ£ö|

+ |Data loss prevention (DLP) policies to protect sensitive data generated by Copilot and saved in Microsoft 365 locations from exfiltration||Files and email|

+ |Manually label and protect Microsoft 365 content used by Copilot||Files and email|

+ |Inherit sensitivity labels and cite sensitivity labels in output and references in Copilot||Γ£ö|

+ |Prohibit Copilot from including sensitive data that users have no extract permissions for|Γ£ö|Γ£ö|

+ |Exclude sensitive files that users have no permission to view from being processed by Copilot|Γ£ö|Γ£ö|

+6. [Secure Microsoft Copilot for Microsoft 365](m365bp-secure-copilot.md)

+- The count of list items for the site is < 1 million.

+- The count of list items for the site is < 1 million.

+|Whiteboard|||✔️in Whiteboard\Components folder|

+|Word for the web (Preview only)|||✔️in Word Loop files folder|

+- **Selfhost**: If youΓÇÖre building your own service pipeline to validate Windows or Office update. This guidance and services could potentially help you: [Azure DevTest Labs](https://nam06.safelinks.protection.outlook.com/?url=https%3A%2F%2Flearn.microsoft.com%2Fazure%2Fdevtest-labs%2F&data=05%7C02%7Cmiaoyuezhou%40microsoft.com%7C7a21782822d142dfe41908dc43ba47c0%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C638459714580469035%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C0%7C%7C%7C&sdata=hCmHl7FT8L6Xkbg2FXfpnS34N3kII%2B8o%2B3UzxunNhzM%3D&reserved=0), [Security Update Guide](https://nam06.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.microsoft.com%2Fen-us%2Fmsrc%2Ffaqs-security-update-guide&data=05%7C02%7Cmiaoyuezhou%40microsoft.com%7C7a21782822d142dfe41908dc43ba47c0%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C638459714580479144%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C0%7C%7C%7C&sdata=MwZ8J9f3BVzUopW9BOesvxo%2FP%2BHQ7fLqLVBsV4QNxHY%3D&reserved=0), [Office Deployment Tool](https://nam06.safelinks.protection.outlook.com/?url=https%3A%2F%2Flearn.microsoft.com%2Fen-us%2Fdeployoffice%2Foverview-office-deployment-tool&data=05%7C02%7Cmiaoyuezhou%40microsoft.com%7C7a21782822d142dfe41908dc43ba47c0%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C638459714580487089%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C0%7C%7C%7C&sdata=sTWfQXK9exSm74Y4qqkha8mRW%2FQLU0DX7%2Fuq24Q3%2F6o%3D&reserved=0).

+You can also submit product suggestions and upvote other ideas at <testbasepreview@microsoft.com>.