Commercial vs enterprise data protection in Microsoft Copilot

A business owner and colleague comparing information on a laptop screen at an office desk
TL;DR

Commercial data protection and enterprise data protection in Microsoft Copilot are the same promise under two names. Microsoft introduced the first label in November 2023, extended enterprise data protection to all work-account sign-ins in September 2024, and renamed the product in December 2024. The protection keeps prompts and responses inside your tenant and out of model training, but only for Microsoft Entra work accounts. Personal sign-ins and the consumer Copilot app sit outside it.

Key takeaways

- Commercial data protection and enterprise data protection in Microsoft Copilot describe the same promise; Microsoft extended the protection to all work-account sign-ins in September 2024 and renamed the product in December 2024. - Enterprise data protection means prompts and responses stay inside your Microsoft 365 tenant, are covered by Microsoft's Data Protection Addendum with Microsoft acting as a data processor, and are not used to train foundation models. - The protection applies only to Microsoft Entra work-account sign-ins on eligible Microsoft 365 plans; personal Microsoft accounts, Apple and Google sign-ins, and Copilot in Microsoft 365 apps for home sit under consumer terms instead. - Work-account Copilot interactions are stored in the geography tied to your tenant and are visible to audit, retention and eDiscovery tools in Microsoft Purview; consumer sessions never appear in your tenant logs. - The two checks that matter for an owner-managed business are confirming staff sign in to Copilot with their work accounts, and blocking or clearly discouraging the consumer Copilot app for anything involving business data.

Try to pin down what Microsoft Copilot does with your company’s data and you soon meet two phrases that look like rival products. Older Microsoft pages and community threads describe commercial data protection. Newer ones describe enterprise data protection. Neither page mentions the other, and nothing tells you whether these are separate tiers, whether one costs more, or whether your business somehow ended up on the weaker one.

If you have hit that wall, the confusion is Microsoft’s doing rather than yours, and the answer is simpler than the search results suggest. This piece untangles the two names, sets out what the protection covers in plain English, and finishes with the two checks worth running in your own business this week.

Are commercial and enterprise data protection different Copilot tiers?

They are two names for the same promise. Microsoft introduced Copilot with commercial data protection in November 2023 to mark out protected, work-account use of the assistant. In September 2024 it announced enterprise data protection for everyone signed in with a work account, and the rename followed in December 2024. The new label replaced the old one rather than adding a tier above it.

Both terms still circulate because the older material never left the internet. Admin guides, blog posts and Microsoft’s own community answers written through 2023 and 2024 use the earlier name, and many still rank well in search. Jisc’s National Centre for AI, writing for UK institutions, described the September 2024 change as removing the difference in protection levels between free Copilot and the paid Microsoft 365 Copilot, provided the sign-in is an organisational account. The independent tracker M365 Maps records the rename itself. So when you meet either phrase in documentation, you are reading about the same underlying commitment at different points in its history.

What does enterprise data protection actually promise?

Enterprise data protection means the prompts your staff type and the responses Copilot generates are treated as customer data under Microsoft’s Data Protection Addendum, with Microsoft acting as a data processor. They stay within your Microsoft 365 tenant, they carry the same contractual protections as your Exchange email and SharePoint files, and they are not used to train Microsoft’s foundation models.

In practice that means a team member can ask Copilot about a live client situation or a draft proposal without that conversation feeding the model that everyone else in the world uses. The protection also rides on the controls you already have. Copilot respects your permissions, inherits your sensitivity labels and follows your retention policies, so it can only surface content the signed-in user could already open. When it sends a web query to Bing to ground an answer, the query is cut down to a few words and stripped of user and tenant identifiers before it leaves, and those queries are neither shared with advertisers nor used for model training.

The promise has edges worth respecting. Enterprise data protection amplifies whatever state your tenant is in, so wide-open SharePoint permissions stay wide open, now with a faster search tool sat on top. And the ICO still treats your business as the controller under UK GDPR, which means how staff actually use the tool remains your responsibility, whatever Microsoft commits to as processor. None of this replaces proper advice on the addendum itself.

Which sign-ins get the protection, and which do not?

The dividing line is the account. Staff signed in with a Microsoft Entra work account on an eligible Microsoft 365 plan get enterprise data protection, including in the free Copilot Chat experience, at no extra cost. Personal Microsoft accounts, Apple or Google sign-ins, and Copilot inside Microsoft 365 apps for home all sit under Microsoft’s consumer terms, where the enterprise commitments do not apply.

Eligible plans include the ones an owner-managed business is likely to hold already, such as Microsoft 365 Business Standard and Business Premium, so the protection usually arrives with licences you have paid for rather than needing a security add-on. The boundary is still easy to cross by accident. Plenty of people run work and personal accounts on the same device, and the consumer Copilot app happily accepts a personal Outlook.com address, an Apple ID or a Google login. A team member who pastes a client email into that session has moved business data under consumer terms without noticing, and outside your visibility.

One more wrinkle. The Copilot brand covers more than one product, and GitHub Copilot has its own data protection agreement, so enterprise data protection on your Microsoft 365 tenant says nothing about what happens to the code your developers put through it.

Where does your business data go, and what can you audit?

Copilot interactions under a work account are stored at rest in the geography tied to your Microsoft 365 tenant, alongside the semantic index Copilot builds to answer questions. They are logged in the same way as your other Microsoft 365 content, which means they appear in audit, retention and eDiscovery tools rather than vanishing when the chat window closes.

That is a real shift from the earliest version of the promise, which leaned on interactions never being stored at all. Jisc noted that once enterprise data protection is enabled, Copilot activity is logged alongside the rest of the organisation’s Microsoft 365 data. For an owner, the storage is largely good news. You, or the IT partner who looks after your tenant, can search Copilot activity through Microsoft Purview, apply retention rules to it, and check whether client matters are being discussed with the assistant in ways your client agreements would not allow. Consumer sessions never reach those logs, which makes the account boundary an audit boundary too.

What should you actually do about it?

Two checks put the account boundary under your control. First, confirm every member of staff reaches Copilot through their work account, and understands why the sign-in matters. Second, block the consumer Copilot app for business use, or at minimum say plainly that business data never goes into it. Neither check costs anything, and both fit inside an afternoon.

The first check is a conversation. Ask each person to open copilot.microsoft.com and show you which account appears in the corner. A work email on your tenant means the protection applies, and a personal address means it does not, in which case separate browser profiles for work and personal life are the cheapest fix. The second check can be a written policy line in a smaller team, or a technical restriction your IT partner applies to company devices, and Microsoft provides admin controls for exactly this.

There is a bigger safety conversation around Copilot, covering permissions hygiene, sensitivity labels and whether you need a data protection impact assessment. I have covered that separately in is Microsoft Copilot safe for business use. For this question, though, the answer holds. Two names, one promise, and a sign-in boundary that decides whether your business gets it.

Sources

- Microsoft (2025). Enterprise data protection in Microsoft 365 Copilot and Microsoft 365 Copilot Chat. Defines the commitments under the Data Protection Addendum, confirms Microsoft's data processor role, and states that prompts, responses and Microsoft Graph data are not used to train foundation models. https://learn.microsoft.com/en-us/microsoft-365/copilot/enterprise-data-protection - Microsoft Tech Community (2024). Updates to Microsoft Copilot to bring enterprise data protection to more organisations. The September 2024 announcement extending enterprise data protection to Copilot use with Microsoft Entra work accounts at no additional cost. https://techcommunity.microsoft.com/blog/microsoft365copilotblog/updates-to-microsoft-copilot-to-bring-enterprise-data-protection-to-more-organiz/4217152 - Jisc National Centre for AI (2024). Microsoft Copilot and data protection, an update. UK analysis confirming that Copilot used with an organisational account now carries the same protection as the rest of Microsoft 365 and that interactions are logged like other tenant data. https://nationalcentreforai.jiscinvolve.org/wp/2024/09/26/microsoft-copilot-and-data-protection-an-update/ - M365 Maps (2024). Microsoft product renames. Independent tracker recording the November 2023 introduction of Microsoft Copilot with Commercial Data Protection and its December 2024 rename to Microsoft Copilot with Enterprise Data Protection. https://m365maps.com/renames.htm - Microsoft (2025). Data residency for Microsoft 365 Copilot. Confirms that the content of Copilot interactions and the related semantic index are stored at rest in the geography associated with the tenant. https://learn.microsoft.com/en-us/microsoft-365/enterprise/m365-dr-service-copilot - Microsoft (2025). Privacy FAQ for Microsoft Copilot. Explains that Copilot's foundation models are trained on publicly available and licensed data, and sets out how consumer Copilot use is governed under Microsoft's privacy statement. https://support.microsoft.com/en-us/microsoft-copilot/privacy-faq-for-microsoft-copilot - Microsoft (2025). Copilot in Microsoft 365 apps for home, your data and privacy. Confirms that Copilot under Microsoft 365 Personal, Family and Copilot Pro plans is governed by consumer privacy settings rather than the enterprise Data Protection Addendum. https://support.microsoft.com/en-us/privacy/copilot-in-microsoft-365-apps-for-home-your-data-and-privacy - Microsoft (2025). Microsoft 365 Copilot pricing. Confirms that Microsoft 365 Copilot Chat is available at no additional cost for Microsoft Entra account users with eligible Microsoft 365 plans. https://www.microsoft.com/en-us/microsoft-365-copilot/pricing - Information Commissioner's Office (2023). Guidance on generative AI and data protection. Sets out UK controller responsibilities, including impact assessment and oversight, which remain with the business regardless of a vendor's processor commitments. https://ico.org.uk/media/for-organisations/documents/4021871/guidance-on-generative-ai-and-data-protection.pdf

Frequently asked questions

Is commercial data protection the same as enterprise data protection in Microsoft Copilot?

Yes. Commercial data protection was Microsoft's original label, introduced in November 2023, for protected Copilot use on work accounts. In September 2024 Microsoft announced that enterprise data protection would apply to all Copilot use with a Microsoft Entra work account, and the product rename followed in December 2024. The name changed while the underlying promise stayed the same, so there is no second tier to choose between.

Does Microsoft train its AI models on our Copilot prompts?

Under enterprise data protection, prompts, responses and data reached through Microsoft Graph are not used to train Microsoft's foundation models, and Microsoft acts as a data processor under its Data Protection Addendum. That commitment applies when staff are signed in with a Microsoft Entra work account on an eligible plan. Consumer Copilot use under a personal account is governed by Microsoft's consumer privacy terms, which make no equivalent processor commitment.

How do I check my staff are getting enterprise data protection in Copilot?

Ask each person to open Copilot and show you which account they are signed in with. A work email on your Microsoft 365 tenant means enterprise data protection applies. A personal Outlook.com, Apple or Google sign-in means it does not. Separate browser profiles for work and personal accounts reduce accidental cross-over, and your IT partner can restrict the consumer Copilot app on company devices.

This post is general information and education only, not legal, regulatory, financial, or other professional advice. Regulations evolve, fee benchmarks shift, and every situation is different, so please take qualified professional advice before acting on anything you read here. See the Terms of Use for the full position.

Ready to talk it through?

Book a free 30 minute conversation. No pitch, no pressure, just a useful chat about where AI fits in your business.

Book a conversation

Related reading

If any of this sounds familiar, let's talk.

The next step is a conversation. No pitch, no pressure. Just an honest discussion about where you are and whether I can help.

Book a conversation