Most people ask the wrong question about Copilot.
They ask “is it safe?” What they mean is “can it leak our stuff?” Fair worry. But it’s the wrong place to start.
The real question a client should be asking is “can you show me what Copilot has been doing?” Because if the answer is no, safe or not doesn’t matter. You’re flying blind.
Here’s the thing nobody tells you in the licensing pitch. Every Copilot interaction is already being recorded. You don’t have to buy anything. You don’t have to flip a switch. It’s been sitting in the unified audit log the whole time, waiting for someone to go look.
Most MSPs never do.
What is Copilot audit logging, really?
It’s the receipt for every conversation your users have with Copilot.
When someone asks Copilot in Word to summarise a document, or asks Copilot in Teams what they missed, that interaction writes a record into Microsoft Purview. Who did it. When. Which Copilot app. And — this is the part that matters — which files and resources Copilot reached into to answer.
This happens automatically as part of Audit (Standard), which is on by default for business tenants. If auditing is running, Copilot logging is running. Microsoft spells it out in the audit logs for Copilot and AI applications docs: no extra steps, no separate config.
That’s not a feature you enable. That’s a feature you’ve been ignoring.
Step-by-Step: finding Copilot activity in Purview
Open the Audit solution
Go to the Microsoft Purview portal at purview.microsoft.com, sign in, and pick Audit from the Solutions list on the left. If you’ve got the Audit Logs or View-Only Audit Logs role, you’ll land on the search page. If you don’t, that’s your first job — sort the permissions, per the search the audit log guidance.
Set your date range and activity
Pick a start and end date. Then in the activities filter, search for the Copilot record type.
RecordType: CopilotInteraction
Activity: Interacted with CopilotNotice what’s missing? No prompt text in that filter. The audit row tells you that a conversation happened and what files it touched — it doesn’t hand you the back-and-forth wording. That content lives elsewhere, retained for eDiscovery and Communication Compliance, not in the row you’re reading. Knowing that distinction is what separates someone who’s read the docs from someone who’s guessing.
Run the search and read the resources
Start the job. It keeps running even if you close the browser, and finished searches stick around for 30 days. Open a result and look at the AccessedResources field. That’s the gold. It shows the actual files Copilot pulled in to ground its answer.
This is where oversharing shows up. If Copilot is referencing a payroll spreadsheet for someone in the warehouse, you didn’t find a Copilot problem. You found a permissions problem Copilot just made visible.
Export when you need a paper trail
Push the results to CSV. Now you’ve got evidence, not anecdotes.
Why this actually changes the client conversation
Walk into a renewal with “Copilot is secure, trust me” and you sound like every other reseller.
Walk in with “here’s a report of every file Copilot accessed last quarter, and here are the three oversharing issues we caught and fixed” — that’s a different meeting. That’s you doing governance, not selling a licence.
“Wait, so I can actually prove Copilot isn’t quietly reading files it shouldn’t?”
Yes. And that single sentence is worth more to a nervous business owner than any feature slide.
One caveat worth knowing. Retention isn’t infinite and it isn’t equal. On most Business Premium tenants you’re looking at 180 days. On E5, key workloads stretch to a year, and you can build longer audit log retention policies if compliance demands it. If a client needs to answer “what happened nine months ago,” check the retention before you promise the answer exists.
This is the stuff cyber insurance forms ask about. It’s what SMB1001 and Essential Eight assessors want to see. Not “do you have Copilot.” But “can you account for what it did.”
Copilot doesn’t forget. Make sure you can read what it remembers.
If you’ve rolled Copilot out to a client and you can’t pull this report, you haven’t finished the rollout. You’ve just started the part nobody bothered to do.
CIAOPS 