Exchange Online · Compliance & Security

Compliance Management

Members can configure and manage compliance settings within Exchange in accordance with organizational policies. Covers DLP, retention, journaling, and IRM.

Scope: Exchange Online compliance features

Permissions

  • Audit Logs - Search administrator audit log and view results
  • Compliance Admin - View and edit compliance feature settings
  • Data Loss Prevention - Manage DLP policies for mail flow rules
  • Information Rights Management - Configure IRM features
  • Journaling - Configure journaling rules
  • Message Tracking - Track messages in the organization
  • Retention Management - Manage retention policies
  • Transport Rules - Create and manage mail flow rules
  • View-Only Audit Logs - Search and view audit logs
  • View-Only Configuration - View organization settings
  • View-Only Recipients - View recipient properties

Common use cases

  • Implementing email retention policies
  • Configuring DLP for Exchange mail flow
  • Setting up journaling for compliance
  • Managing Information Rights Management

Best practices

  • Coordinate with Microsoft Purview administrators
  • Document retention requirements with legal team
  • Test policies before organization-wide deployment
  • Use Purview for unified compliance management

Security considerations

  • Can view audit logs and message tracking data
  • Can configure journaling which copies emails externally
  • DLP policies can block or redirect sensitive content

Official Microsoft Learn documentation →

Open the interactive RBACMap →