Security : Cloud : Data Governance

The Data Governance Insight highlights potential risks in how files are shared across Microsoft OneDrive and SharePoint. It helps organizations see where sensitive information may be exposed internally or externally, and whether sensitivity labels are being applied consistently.

How do we calculate this Insight?

This Insight is powered by the Microsoft 365 OneDrive & SharePoint integration.
It surfaces:

• Externally vulnerable drives/sites – files shared outside your organization.

• Internally vulnerable drives/sites – files accessible to large groups or entire departments without sensitivity labels.

• Sensitivity label coverage – files with and without Microsoft Information Protection (MIP) labels.

• Sharing activity by user or department – showing who owns or shares the most data.

The goal is to give you visibility into where data may be at risk, without requiring manual review of every file.

Why might this Insight be empty or missing data?

The Data Governance Insight normally displays results once the Microsoft 365 integration is connected. However, data may be incomplete or delayed if:

• The integration is not fully connected or permissions are missing.

• In very large environments (such as universities), some sources may not finish ingesting immediately.

• Authentication tokens for Microsoft 365 have expired and need to be refreshed.

Troubleshooting Checklist:

• Confirm that the Microsoft 365 OneDrive & SharePoint integration is connected.

• Verify that the integration account has the correct permissions to read file and sharing metadata.

• Allow time for ingestion in large environments.

• Re-authenticate the integration if connection tokens have expired.