Say farewell to the AI bubble, and get ready for the crash
(www.latimes.com)
🗣️ DISCUSSION 💬
You're viewing a single comment thread. View all comments, or full comment thread.
Comments (94)
sorted by:
Agreed. I also think sometime between 1 and 5 years from now we will start seeing companies losing tons of data, IP, and competitive edges because of stupid ideas like letting Microsoft Copilot onto their LAN and allowing it to index all their data "to help their employees and businesses be more efficient". Companies are allowing Copilot to have access to many - if not all - docs, even while they are being created. Even EMail. Microsoft was bad enough with Windows, but Copilot is an awful idea for businesses.
Your concerns are understandable, especially given the sensitivity of enterprise data.
However, with proper governance, Copilot is designed to operate securely without compromising data, IP, or competitive edges.
When correctly configured, Copilot accesses only the Microsoft 365 data (docs, emails, etc.) a user is explicitly authorized to view via the Microsoft Graph, respecting existing permissions.
Data stays within the organization’s tenant, encrypted at rest and in transit, and isn’t used to train Microsoft’s models or shared externally. Prompts and responses are processed in-memory, and admins can audit interactions via Microsoft Purview without Microsoft accessing the data.
With robust controls such as strict access policies, regular audits, limited data scope, and third-party plugin vetting, Copilot doesn’t index or expose sensitive data beyond what’s permitted.
For example, sensitive documents or emails remain inaccessible to unauthorized users, and web queries are anonymized, adhering to enterprise-grade protections like GDPR.
While misconfigurations could pose risks, proper governance mitigates these, allowing businesses to leverage Copilot’s efficiency benefits securely.
It’s critical to enforce these controls and train employees to use it correctly to avoid internal leaks or oversights.