Merge branch 'main' into patch-1

Author: alexsfaulkner

.openpublishing.redirection.admin.json

@@ -2249,6 +2249,11 @@
       "source_path": "microsoft-365/admin/misc/welcome-business-assist.md",
       "redirect_url": "/microsoft-365/admin/get-help-support",
       "redirect_document_id": false
+    },
+    {
+      "source_path": "microsoft-365/admin/activity-reports/message-consumption.md",
+      "redirect_url": "/microsoft-365/admin/activity-reports/microsoft-365-copilot-credits",
+      "redirect_document_id": false
     }
   ]
 }

copilot/TOC.yml

@@ -117,6 +117,8 @@ items:
     href: microsoft-365-copilot-search-admin-experience.md
   - name: Microsoft 365 Copilot Search FAQ
     href: microsoft-365-copilot-search-faq.yml
+  - name: Connect organizational asset library to Microsoft 365 Copilot Search
+    href: microsoft-365-copilot-search-image-tagging-integration.md   
 - name: Microsoft 365 Copilot in Microsoft Teams
   items:
   - name: Overview of AI in Microsoft Teams

copilot/employee-self-service/customize.md

@@ -127,7 +127,7 @@ Tips on writing this disclaimer:
 
 The Employee Self-Service agent comes with several out-of-the-box Topics to get you started. The maker can customize each of these topics. These topics can be tested before publishing them to the broader set of users. These customizations reflect in all surfaces where the agent is published.
 
-The following Topics are available in the current package version 1.0.0.69:
+The following Topics are available in the current package version:
 
 |Topic |Type |Trigger |Enabled (default) |When to use |
 |------|-----|--------|------------------|------------|

copilot/employee-self-service/overview.md

@@ -33,14 +33,14 @@ The Employee Self-Service (ESS) agent answer policy-related questions, assist wi
 
 |Version  |Changes |
 |---------|--------|
-|1.0.0.64 |Hard agent handoff base template without context passing (Topic is disabled by default). |
+|1.0.0.64 |Hard agent handoff base template without context passing (Topic is disabled by default) |
 |1.0.0.66 |Internal licensing validation |
 |1.0.0.62 |ESS package name to Employee Self-Service Agent |
 |1.0.0.61 |No functional changes |
 |1.0.0.60 |Added default starter prompts |
 |1.0.0.59 |Internal naming standards fix |
 |1.0.0.58 |Supported back the UserContext flow among ESS Core package and ISV packages.</br> The UserContext setup is the same as existing way of adding ISV specific user context topics as redirected topics in the topic "[Admin] - User Context - Setup" |
-|1.0.0.71 |  |
+|1.0.0.71 |Minor bug fixes |
 
 ## Get started with the Employee Self-Service agent
 

copilot/employee-self-service/prerequisites.md

@@ -31,8 +31,7 @@ The ESS Agent is built on top of Microsoft 365 Copilot. Users need the following
 
 |Role                          |Workload/tools |Licensing and access |
 |------------------------------|---------------|---------------------|
-|Users                         |Microsoft 365 Copilot |[Microsoft 365 Copilot](../microsoft-365-copilot-licensing.md)       |
-|Users                         |Microsoft Power Platform* |[Licensing overview for Power Platform](/power-platform/admin/pricing-billing-skus) </br>[Request limits and allocations](/power-platform/admin/api-request-limits-allocations)|
+|Users                         |Microsoft 365 Copilot |[Microsoft 365 Copilot](../microsoft-365-copilot-licensing.md) |
 |Users                         |Microsoft Teams |[Manage user access to Microsoft Teams](/microsoftteams/user-access) |
 |Environment admins and makers |Copilot Studio  |[Copilot Studio licensing and subscriptions](/microsoft-copilot-studio/requirements-licensing-subscriptions) |
 

copilot/enterprise-data-protection.md

@@ -15,33 +15,33 @@ ms.collection:
 - must-keep
 - trust-pod
 hideEdit: true
-ms.date: 03/13/2025
+ms.date: 08/29/2025
 ms.update-cycle: 180-days
 ---
 
 # Enterprise data protection in Microsoft 365 Copilot and Microsoft 365 Copilot Chat
 
 ## What is enterprise data protection in Microsoft 365 Copilot and Microsoft 365 Copilot Chat?
 
-The use of Microsoft 365 Copilot and Microsoft 365 Copilot Chat, as used by organizations, are covered by the terms of the [Data Protection Addendum (DPA)](https://www.microsoft.com/licensing/docs/view/Microsoft-Products-and-Services-Data-Protection-Addendum-DPA) and [Product Terms](https://www.microsoft.com/licensing/terms/product/PrivacyandSecurityTerms/all), with Microsoft acting as a data processor.
+The use of Microsoft 365 Copilot and Microsoft 365 Copilot Chat, as used by organizations, is covered by the terms of the [Microsoft Products and Services Data Protection Addendum (DPA)](https://www.microsoft.com/licensing/docs/view/Microsoft-Products-and-Services-Data-Protection-Addendum-DPA) and [Microsoft Product Terms](https://www.microsoft.com/licensing/terms/product/PrivacyandSecurityTerms/all), with Microsoft acting as a data processor.
 
 Enterprise data protection (EDP) refers to controls<sup>[1]</sup> and commitments, under the Data Protection Addendum (DPA) and Product Terms, that apply to customer data for users of Microsoft 365 Copilot and Microsoft 365 Copilot Chat. The use of the term EDP isn't meant to limit the benefits offered under the DPA and Product Terms.  
 
 ## Enterprise data protection for prompts and responses
 
 Microsoft 365 Copilot and Microsoft 365 Copilot Chat offer the same enterprise terms<sup>[2]</sup> available in our Microsoft 365 commercial offerings.
 
-Use of Microsoft 365 Copilot and Microsoft 365 Copilot Chat involves prompts (entered by users) and responses (content generated by Copilot). With EDP, prompts and responses are protected by the same contractual terms and commitments widely trusted by our customers for their emails in Exchange and files in SharePoint.
+Use of Microsoft 365 Copilot and Microsoft 365 Copilot Chat involves prompts (entered by users) and responses (content generated by Copilot). With EDP, prompts and responses are protected by the same contractual terms and commitments widely trusted by our customers for their emails in Exchange and their files in SharePoint.
 
 - **We secure your data:** We help protect your data with [encryption](/purview/office-365-encryption-in-the-microsoft-cloud-overview) at rest and in transit, rigorous physical security controls, and data [isolation](/compliance/assurance/assurance-microsoft-365-isolation-controls) between tenants.
 
-- **Your data is private:** We won’t use your data except as you instruct. Our commitments to [privacy](https://www.microsoft.com/trust-center/privacy) include support for [GDPR](/compliance/regulatory/gdpr), the [EU Data Boundary](/privacy/eudb/eu-data-boundary-learn)<sup>[3]</sup>, [ISO/IEC 27018](/compliance/regulatory/offering-ISO-27018), and our [Data Protection Addendum](https://www.microsoft.com/licensing/docs/view/Microsoft-Products-and-Services-Data-Protection-Addendum-DPA).
+- **Your data is private:** We won’t use your data except as you instruct. Our commitments to [privacy](https://www.microsoft.com/trust-center/privacy) include support for the [General Data Protection Regulation (GDPR)](/compliance/regulatory/gdpr), the [EU Data Boundary](/privacy/eudb/eu-data-boundary-learn)<sup>[3]</sup>, [ISO/IEC 27018](/compliance/regulatory/offering-ISO-27018), and our [Data Protection Addendum](https://www.microsoft.com/licensing/docs/view/Microsoft-Products-and-Services-Data-Protection-Addendum-DPA).
 
-- **Your access controls and policies apply to Copilot:** Copilot respects your [identity model](microsoft-365-copilot-privacy.md#how-does-microsoft-365-copilot-protect-organizational-data) and [permissions](microsoft-365-copilot-privacy.md#how-does-microsoft-365-copilot-use-your-proprietary-organizational-data), inherits your [sensitivity labels](/purview/sensitivity-labels#sensitivity-labels-and-microsoft-365-copilot), applies your [retention](/purview/retention-policies-copilot) policies, supports [audit](/purview/audit-search?tabs=microsoft-purview-portal) of interactions, and follows your administrative settings. The specific controls and policies will vary depending on the underlying subscription plan.
+- **Your access controls and policies apply to Copilot:** Copilot respects your [identity model](microsoft-365-copilot-privacy.md#how-does-microsoft-365-copilot-protect-organizational-data) and [permissions](microsoft-365-copilot-privacy.md#how-does-microsoft-365-copilot-use-your-proprietary-organizational-data), inherits your [sensitivity labels](/purview/sensitivity-labels#sensitivity-labels-for-microsoft-365-copilot-and-microsoft-365-copilot-chat), applies your [retention](/purview/retention-policies-copilot) policies, supports [audit](/purview/audit-search) of interactions, and follows your administrative settings. The specific controls and policies will vary depending on the underlying subscription plan.
 
 - **You're protected against AI security and copyright risks:** We help safeguard against AI-focused risks such as [harmful content](microsoft-365-copilot-privacy.md#how-does-copilot-block-harmful-content) and [prompt injections](microsoft-365-copilot-privacy.md#does-copilot-block-prompt-injections-jailbreak-attacks). For content copyright concerns, we provide [protected material detection](microsoft-365-copilot-privacy.md#does-copilot-provide-protected-material-detection) and our [Customer Copyright Commitment](https://blogs.microsoft.com/on-the-issues/2023/09/07/copilot-copyright-commitment-ai-legal-concerns/).
 
-- **Your data isn’t used to train foundation models:** Microsoft 365 Copilot Chat uses the user’s context to create relevant responses. Microsoft 365 Copilot also uses Microsoft Graph data. Consistent with our other Copilot offers, prompts, responses, and data accessed through Microsoft Graph [aren't used to train foundation models](https://blogs.microsoft.com/on-the-issues/2024/03/28/data-protection-responsible-ai-azure-copilot/).
+- **Your data isn’t used to train foundation models:** Microsoft 365 Copilot Chat uses the user’s context to create relevant responses. Microsoft 365 Copilot also uses Microsoft Graph data. Consistent with our other Copilot offers, the prompts, responses, and data accessed through Microsoft Graph [aren't used to train foundation models](https://blogs.microsoft.com/on-the-issues/2024/03/28/data-protection-responsible-ai-azure-copilot/).
 
 ### Additional resources
 
@@ -52,15 +52,15 @@ Use of Microsoft 365 Copilot and Microsoft 365 Copilot Chat involves prompts (en
 
 ### Ground responses in latest data
 
-In addition to prompts and responses, web search queries (different from Microsoft Graph queries) are also a part of Copilot interactions. Allowing Copilot to reference web content via these queries improves the quality of Copilot responses by grounding them in the latest information from the web via Bing search service.
+In addition to prompts and responses, web search queries (different from Microsoft Graph queries) are also a part of Copilot interactions. Allowing Copilot to reference web content via these queries improves the quality of Copilot responses by grounding them in the latest information from the web via the Bing search service.
 
 ### Web queries have their own data handling practices
 
 - Web queries sent to the Bing search service are handled identically by both Copilots. Queries are generated from the prompt into a few words. They're sent via a secure connection with user and tenant identifiers removed. They aren't shared with advertisers and aren’t used to train our foundation large language models (LLMs).
 
 - The Bing search service operates separately from Microsoft 365 and has different data-handling practices covered by the [Microsoft Services Agreement](https://www.microsoft.com/servicesagreement) between each user and Microsoft, together with the [Microsoft Privacy Statement](https://www.microsoft.com/privacy/privacystatement). The means that Microsoft acts as an independent data controller responsible for complying with all applicable laws and controller obligations. This approach is consistent with other [optional connected experiences that rely on Bing](/microsoft-365-apps/privacy/optional-connected-experiences#experiences-that-rely-on-bing).  
 
-- The [Product Terms](https://www.microsoft.com/licensing/terms/product/PrivacyandSecurityTerms/all) provide additional commitments about the web queries sent to the Bing search service. For more information, see [Data, privacy, and security for web search in Microsoft 365 Copilot and Microsoft 365 Copilot Chat](manage-public-web-access.md#how-microsoft-handles-generated-search-queries).
+- The [Microsoft Product Terms](https://www.microsoft.com/licensing/terms/product/PrivacyandSecurityTerms/all) provide additional commitments about the web queries sent to the Bing search service. For more information, see [Data, privacy, and security for web search in Microsoft 365 Copilot and Microsoft 365 Copilot Chat](manage-public-web-access.md#how-microsoft-handles-generated-search-queries).
 
 ## Agents in Microsoft 365 Copilot
 
@@ -70,6 +70,6 @@ When you’re using agents in Microsoft 365 Copilot, check the privacy statement
 
 <sup>[1]</sup> The specific controls will vary depending on a customer's Microsoft subscription plans.
 
-<sup>[2]</sup> Microsoft 365 Copilot and Microsoft 365 Copilot Chat support HIPAA compliance for properly configured implementations. HIPAA compliance doesn't apply to web search queries as they aren't covered by the DPA and BAA.
+<sup>[2]</sup> Microsoft 365 Copilot and Microsoft 365 Copilot Chat support HIPAA compliance for properly configured implementations. HIPAA compliance doesn't apply to web search queries as they aren't covered by the DPA and Business Associate Agreement (BAA).
 
 <sup>[3]</sup> The EU Data Boundary doesn’t apply to web search queries.

copilot/microsoft-365-copilot-ai-security.md

@@ -5,7 +5,7 @@ ms.author: georgerozo
 author: denisebmsft
 manager: dansimp
 ms.reviewer: georgerozo
-ms.date: 08/27/2025
+ms.date: 09/04/2025
 ms.update-cycle: 180-days
 audience: Admin
 ms.topic: article
@@ -127,7 +127,7 @@ For more information about using Purview with Microsoft 365 Copilot, see [Micros
 
 #### Cross-cloud governance for AI workloads
 
-[Microsoft Purview](/purview/ai-microsoft-purview) helps you govern AI across hybrid and multicloud environments like Azure, AWS, and Google Cloud. If you have [Microsoft Security Copilot](/copilot/security/microsoft-security-copilot), you get additional AI insights and threat detection capabilities.
+[Microsoft Purview](/purview/ai-microsoft-purview) helps you govern AI across hybrid and multicloud environments like Azure, AWS, and Google Cloud. If you have [Microsoft Security Copilot](/copilot/security/microsoft-security-copilot), you get more AI insights and threat detection capabilities.
 
 - Purview enables consistent data classification, labeling, and policy enforcement across clouds, with visibility into how data flows into AI models and plugins.
 - Security Copilot detects AI-related risks across platforms, correlates threats, and surfaces posture insights from [Cloud security posture management](/azure/defender-for-cloud/concept-cloud-security-posture-management).
@@ -151,8 +151,11 @@ For more information, see the following resources:
 
 ## Secure your data for Microsoft 365 Copilot
 
-Securing your data is a [shared responsibility](/azure/security/fundamentals/shared-responsibility-ai). Microsoft Purview provides tools to help you monitor compliance and secure your data for Microsoft 365 Copilot. See [Use Microsoft Purview to manage data security & compliance for Microsoft 365 Copilot & Microsoft 365 Copilot Chat](/purview/ai-m365-copilot).
+Securing your data for AI tools like Microsoft 365 Copilot is a shared responsibility. In addition to what Microsoft does to secure Microsoft 365 Copilot, there are certain tasks your organization must do to manage your data and help ensure you're using AI safely and securely. See the [AI shared responsibility model](/azure/security/fundamentals/shared-responsibility-ai). 
 
-High-level deployment guidance is available to help you deploy a secure-by-default configuration, address oversharing concerns, and prevent data leak to shadow AI. See [Microsoft Purview deployment models](https://aka.ms/PurviewBlueprints).
+Microsoft Purview provides tools to help you secure and govern your data for use in Microsoft 365 Copilot and AI tools. See the following articles:
 
-You can use Microsoft Purview to mitigate and manage the risks associated with AI usage. See [Microsoft Purview data security and compliance protections for generative AI apps](/purview/ai-microsoft-purview).
+- [Use Microsoft Purview to manage data security & compliance for Microsoft 365 Copilot & Microsoft 365 Copilot Chat](/purview/ai-m365-copilot)
+- [Microsoft Purview data security and compliance protections for generative AI apps](/purview/ai-microsoft-purview)
+
+Download and review our scenario-based deployment models, presentations, and guides. These resources describe how to rapidly implement a secure-by-default configuration, address oversharing concerns, and prevent data leak to shadow AI. See [Notes from engineering: Microsoft Purview deployment models](https://aka.ms/PurviewBlueprints).