Microsoft is updating its Edge for Business browser with controls designed to prevent employees from sending sensitive company data to unsanctioned consumer AI tools.
The move places the browser at the centre of enterprise AI governance, addressing what Microsoft describes as "shadow AI" risks, where staff use personal AI tools that may retain or repurpose the data submitted to them.
The controls operate whether a device is managed or unmanaged, provided users are signed in with Entra ID, Microsoft's cloud identity platform.
Inline data loss prevention from Microsoft Purview, the company's compliance and data governance suite, can now audit or block prompts and file uploads to supported AI tools.
Where prompts are blocked, users are redirected to Microsoft 365 Copilot, where Microsoft says enterprise data protections apply.
Prompt-level data protections in Purview are now generally available.
Microsoft is also rolling out multi-tab reasoning and YouTube summarisation in general availability, allowing the browser to analyse content across up to 30 open tabs simultaneously.
Agent Mode, which automates multi-step workflows, is forthcoming and will be restricted to IT-approved sites with visible controls.
Related reading
- Microsoft warns AI agents risk becoming "double agents" as it unveils security controls at RSAC
- Meta hires founders of AI startup Dreamer in latest push to build autonomous agent technology
- Most workers are using AI wrong, Google and Stanford study finds
Outlook on the web gains enforcement of Microsoft Purview sensitivity labels in Edge for Business, including copy protection, screenshot blocking and print restrictions, though this feature requires a Microsoft 365 E5 licence.
Edge for Business is also expanding third-party integrations, with connectors for Devicie and Trellix, both security management platforms, now generally available, alongside support for Clever, a service used for trusted device logins.
The recap
- Microsoft expands Edge for Business security features at RSAC 2026
- Prompt-level data protections in Purview are generally available
- Agent Mode details coming soon; multi-tab reasoning rolling out
