{"id":12391,"date":"2023-10-19T10:43:30","date_gmt":"2023-10-19T17:43:30","guid":{"rendered":"https:\/\/www.microsoft.com\/insidetrack\/blog\/?p=12391"},"modified":"2024-05-23T13:44:48","modified_gmt":"2024-05-23T20:44:48","slug":"getting-the-most-out-of-generative-ai-at-microsoft-with-good-governance","status":"publish","type":"post","link":"https:\/\/www.microsoft.com\/insidetrack\/blog\/getting-the-most-out-of-generative-ai-at-microsoft-with-good-governance\/","title":{"rendered":"Getting the most out of generative AI at Microsoft with good governance"},"content":{"rendered":"<div style=\"background: #DFCDD2; border-radius: 25px; max-width: 375px; padding: 10px; margin-top: 10px; margin-left: 20px; float: right;\">\n<p><img decoding=\"async\" class=\"alignleft wp-image-13581\" style=\"margin-top: 0px;\" src=\"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2024\/05\/blog-icons-02-Readiness-guides_solo72x59-2.png\" alt=\"\" \/><\/p>\n<h2 style=\"margin-top: 0px; font-size: 1em;\">Copilot for Microsoft 365 Deployment and Adoption Guide<\/h2>\n<p>Read our step-by-step guide on deploying Copilot for Microsoft 365 at your company. It\u2019s based on our experience deploying it here at Microsoft:<\/p>\n<ul class=\"c-list\">\n<li style=\"padding: 0px;\"><a href=\"https:\/\/www.microsoft.com\/insidetrack\/blog\/deploying-copilot-for-microsoft-365-in-four-chapters\/\">Full version<\/a><\/li>\n<li style=\"padding: 0px;\"><a href=\"https:\/\/aka.ms\/msdcopilotguidepdf\">eBook version<\/a><\/li>\n<li style=\"padding: 0px;\"><a href=\"https:\/\/www.microsoft.com\/insidetrack\/blog\/copilot-for-microsoft-365-for-executives-sharing-our-internal-deployment-and-adoption-journey-at-microsoft\/\">Version for executives<\/a><\/li>\n<li style=\"padding: 0px;\"><a href=\"https:\/\/aka.ms\/msdcopilotexecguidepdf\">eBook version for executives<\/a><\/li>\n<\/ul>\n<\/div>\n<p>Since generative AI exploded onto the scene, it\u2019s been unleashing our employees\u2019 creativity, unlocking their productivity, and up-leveling their skills.<\/p>\n<p>But we can fly into risky territory if we\u2019re not careful. The key to protecting the company and our employees from the risks associated with AI is adopting proper governance measures based on rigorous data hygiene.<\/p>\n<p>Technical professionals working within Microsoft Digital (MSD), our internal IT organization, have taken up this challenge. <a href=\"https:\/\/www.microsoft.com\/insidetrack\/blog\/the-ai-revolution-how-microsoft-is-responding-with-an-ai-center-of-excellence\/\">They include the AI Center of Excellence (AI CoE) team<\/a> and the Microsoft Tenant Trust team that governs our Microsoft 365 tenant.<\/p>\n<blockquote class=\"quote-body\"><p>The endgame here is acceleration. AI accelerates employees\u2019 ability to get questions answered, create things based on dispersed information, summarize key learnings, and make connections that otherwise wouldn\u2019t be there.<\/p>\n<p class=\"source\">\u2014David Johnson, tenant and compliance architect, MSD<\/p>\n<\/blockquote>\n<p>Since the widespread emergence of generative AI technologies over the last year, our governance experts have been busy ensuring our employees are set up for success. Their collaboration helps us ensure we\u2019re governing AI through both guidance from our AI CoE and a governance model for our Microsoft 365 tenant itself.<\/p>\n<p><em>[<a href=\"\/insidetrack\/blog\/the-ai-revolution-how-microsoft-is-responding-with-an-ai-center-of-excellence\/\">Learn how Microsoft is responding to the AI revolution with a Center of Excellence<\/a>. <a href=\"\/insidetrack\/blog\/transforming-data-governance-at-microsoft-with-microsoft-purview-and-microsoft-fabric\/\">Discover transforming data governance at Microsoft with Purview and Fabric.<\/a> <a href=\"\/insidetrack\/blog\/a-foundation-for-modern-collaboration-microsoft-365-bolsters-teamwork\/\">Explore how we use Microsoft 365 to bolster our teamwork.<\/a>]<\/em><\/p>\n<h2><strong>Generative AI presents limitless opportunities\u2014and some tough challenges<\/strong><\/h2>\n<p>Next-generation AI\u2019s benefits are becoming more evident by the day. Employees are finding ways to simplify and offload mundane tasks and focus on productive, creative, collaborative efforts. They\u2019re also using AI to produce deeper and more insightful analytical work.<\/p>\n<p>\u201cThe endgame here is acceleration,\u201d says David Johnson, a tenant and compliance architect with MSD. \u201cAI accelerates employees\u2019 ability to get questions answered, create things based on dispersed information, summarize key learnings, and make connections that otherwise wouldn\u2019t be there.\u201d<\/p>\n<p>There\u2019s a real urgency for organizations to empower their employees with advanced AI tools\u2014but they need to do so safely. Johnson and others in our organization are balancing the desire to move quickly against the need for caution with technology that hasn\u2019t yet revealed all the potential risks it creates.<\/p>\n<p>\u201cWith all innovations\u2014even the most important ones\u2014it&#8217;s our journey and our responsibility to make sure we&#8217;re doing things in the most ethical way,\u201d says Faisal Nasir, an engineering leader on the AI CoE team. \u201cIf we get it right, AI gives us the power to provide the most high-quality data to the right people.\u201d<\/p>\n<blockquote class=\"quote-body\"><p>We\u2019re going to be one of the first organizations to really get our hands on the whole breadth of AI capabilities. It will be our job to ensure we have good, sensible policies for eliminating unnecessary risks and compliance issues.<\/p>\n<p class=\"source\">\u2014Matt Hempey, program manager lead, MDE<\/p>\n<\/blockquote>\n<p>But in a world where AI copilots can comb through enormous masses of enterprise data in the blink of an eye, security through obscurity doesn\u2019t cut it. We need to ensure we maintain control over where data flows throughout our tenant. It\u2019s about providing information to the people and apps that have proper access and insulating it against ones that don\u2019t.<\/p>\n<p>To this end, our AI CoE team is introducing guardrails that ensure our data stays safe.<\/p>\n<h2>Tackling good AI governance<\/h2>\n<p>The AI CoE brings together experts from all over Microsoft who work across several disciplines, from data science and machine learning to product development and experience design. They use an AI 4 ALL (Accelerate, Learn, Land) model to guide our adoption of generative AI through enablement initiatives, employee education, and a healthy dose of rationality.<\/p>\n<p>\u201cWe\u2019re going to be one of the first organizations to really get our hands on the whole breadth of AI capabilities,\u201d says Matt Hempey, a program manager lead on the AI CoE team. \u201cIt will be our job to ensure we have good, sensible policies for eliminating unnecessary risks and compliance issues.\u201d<\/p>\n<p>As Customer Zero for these technologies, we have a responsibility for caution\u2014but not at the expense of enablement.<\/p>\n<p>\u201cWe&#8217;re not the most risk-averse customer,\u201d Johnson says. \u201cWe&#8217;re simply the most risk-aware customer.\u201d<\/p>\n<p>The AI CoE has four pillars of AI adoption: strategy, architecture, roadmap, and culture. As an issue of AI governance, establishing compliance guardrails falls under architecture. This pillar focuses on the readiness and design of infrastructure and services supporting AI at Microsoft, as well as interoperability and reusability for enterprise assets in the context of generative AI.<\/p>\n<p>&nbsp;<\/p>\n<figure id=\"attachment_12398\" aria-describedby=\"caption-attachment-12398\" style=\"width: 1144px\" class=\"wp-caption alignnone\"><img loading=\"lazy\" decoding=\"async\" class=\"wp-image-12398 size-full\" src=\"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2023\/10\/10521_AI_Governance_Graphic.jpg\" alt=\"The AI Center for Excellence team\u2019s areas of responsibility, including strategy, architecture, roadmap, and culture.\" width=\"1144\" height=\"662\" srcset=\"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2023\/10\/10521_AI_Governance_Graphic.jpg 1144w, https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2023\/10\/10521_AI_Governance_Graphic-300x174.jpg 300w, https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2023\/10\/10521_AI_Governance_Graphic-1024x593.jpg 1024w, https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2023\/10\/10521_AI_Governance_Graphic-768x444.jpg 768w\" sizes=\"(max-width: 1144px) 100vw, 1144px\" \/><figcaption id=\"caption-attachment-12398\" class=\"wp-caption-text\">We\u2019ve created four pillars to guide our internal implementation of generative AI across Microsoft: Strategy, architecture, roadmap, and culture. Our work on AI governance falls under architecture.<\/figcaption><\/figure>\n<h2>Building a secure and compliant data foundation<\/h2>\n<p>Fortunately, Microsoft\u2019s existing data hygiene practices provide an excellent baseline for AI governance.<\/p>\n<p>There are three key pieces of internal data hygiene at Microsoft:<\/p>\n<ol class=\"c-list\">\n<li>Employees can create new workspaces like Sites, Teams, Groups, Communities, and more. Each workspace features accountability mechanisms for its owner, policies, and lifecycle management.<\/li>\n<li>Workspaces and data get delineated based on labeling.<\/li>\n<li>That labeling enforces policies and provides user awareness of how to handle the object in question.<\/li>\n<\/ol>\n<p>With AI, the primary concern is ensuring that we properly label the enterprise data contained in places like SharePoint sites and OneDrive files. AI will then leverage the label, respect policies, and ensure any downstream content-surfacing will drive user awareness of the item\u2019s sensitivity.<\/p>\n<p>AI will always respect user permissions to content, but that assumes source content isn\u2019t overshared. Several different mechanisms help us limit oversharing within the Microsoft tenant:<\/p>\n<ol class=\"c-list\">\n<li>Using site labeling where the default is private and controlled.<\/li>\n<li>Ensuring every site with a \u201cconfidential\u201d or \u201chighly confidential\u201d label sets the default library label to derive from its container. For example, a highly confidential site will mean all new and changed files will also be highly confidential.<\/li>\n<li>Enabling company sharable links (CSLs) like \u201cShare with People in &lt;name of organization&gt;\u201d on every label other than those marked highly confidential. That means default links will only show up to the direct recipient in search\u00a0and in results employees get from using Microsoft\u2019s various Copilots.<\/li>\n<li>All Teams and sites have lifecycle management in place where the owner attests that the contents are properly labeled and protected. This also removes stale data from AI.<\/li>\n<li>Watching and addressing oversharing based on site and file reports from Microsoft Graph Data Connect.<\/li>\n<\/ol>\n<p>Microsoft 365 Copilot and other Copilots respect labels and display\u00a0them to keep users informed of the sensitivity of the response. They also respect any rights management service (RMS) protections that block content extraction on file labels.<\/p>\n<blockquote class=\"quote-body\"><p>To make the Copilot platform as successful and securely extensible as possible, we need to ensure we can control data egress from the tenant.<\/p>\n<p class=\"source\">\u2014Keith Bunge, software engineering architect for employee productivity solutions, MSD<\/p>\n<\/blockquote>\n<p>If the steps above are in place, search disablement becomes unnecessary, and overall security improves. \u201cIt isn\u2019t just about AI,\u201d Johnson says. \u201cIt\u2019s about understanding where your information sits and where it\u2019s flowing.\u201d<\/p>\n<p>From there, our various Copilots and other AI tools in question can then safely build a composite label and attach it to its results based on the foundational labels it used to create them. That provides the context it needs to decide whether to share its results with a user or extend them to a third-party app.<\/p>\n<p>\u201cTo make the Copilot platform as successful and securely extensible as possible, we need to ensure we can control data egress from the tenant,\u201d says Keith Bunge, a software engineering architect for employee productivity solutions within MSD.<\/p>\n<p>We can also use composite labels to trigger confidential information warnings to users. That transparency provides our people with both agency and accountability, further cementing responsible AI use within our culture of trust.<\/p>\n<blockquote class=\"quote-body\"><p>Process, people, and technology are all part of this effort. The framework our team is developing helps us look at data standards from a technical perspective, as well as overall architecture for AI applications as extensions on top of cloud and hybrid application architecture.<\/p>\n<p class=\"source\">\u2014Faisal Nasir, principal architect, MSD<\/p>\n<\/blockquote>\n<p>Ultimately, AI governance is similar to guardrails for other tools and features that have come online within our tenant. As an organization, we know the areas we need to review because we already have a robust set of criteria for managing data.<\/p>\n<p>But since this is a new technology with new functionality, the AI CoE is spending time conducting research and partnering with stakeholders across Microsoft to identify potential concerns. As time goes on, we\u2019ll inevitably adjust our AI governance practices to ensure we\u2019re meeting <a href=\"https:\/\/www.microsoft.com\/en-us\/ai\/responsible-ai\" target=\"_blank\" rel=\"noopener\">our commitment to responsible AI<\/a>.<\/p>\n<figure id=\"attachment_12419\" aria-describedby=\"caption-attachment-12419\" style=\"width: 600px\" class=\"wp-caption alignright\"><img loading=\"lazy\" decoding=\"async\" class=\"wp-image-12419 size-full\" src=\"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2023\/10\/10521-AI-Governance-SME-v2.png\" alt=\"Johnson, Nasir, Hempey, and Bunge pose for pictures assembled into a collage.\" width=\"600\" height=\"213\" srcset=\"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2023\/10\/10521-AI-Governance-SME-v2.png 600w, https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2023\/10\/10521-AI-Governance-SME-v2-300x107.png 300w\" sizes=\"(max-width: 600px) 100vw, 600px\" \/><figcaption id=\"caption-attachment-12419\" class=\"wp-caption-text\">From left to right, David Johnson, Faisal Nasir, Matt Hempey, and Keith Bunge are among those working together here at Microsoft to ensure our data estate stays protected as we adopt next-generation AI tools.<\/figcaption><\/figure>\n<p>\u201cProcess, people, and technology are all part of this effort,\u201d Nasir says. \u201cThe framework our team is developing helps us look at data standards from a technical perspective, as well as overall architecture for AI applications as extensions on top of cloud and hybrid application architecture.\u201d<\/p>\n<p>As part of getting generative AI governance right, we\u2019re conducting extensive user experience and accessibility research. That helps us understand how these tools land throughout our enterprise and keep abreast of new scenarios as they emerge\u2014along with the extensibilities they need and any data implications. We&#8217;re also investing time and resources to catch and rectify any mislabeled data, ensuring we seal off any existing vulnerabilities within our AI ecosystem.<\/p>\n<p>Not only does this customer zero engagement model support our AI governance work, but it also helps build trust among employees through transparency. That trust is a key component of the employee empowerment that drives adoption.<\/p>\n<h3>Ten steps for getting tenant data governance right<\/h3>\n<p>We think you might find it easier to label your containers before you start thinking about how to label emails and files or think about auto-labeling.<\/p>\n<table style=\"max-width: 100%; padding: 10px; top-margin: 20px; vertical-align: top;\">\n<tbody>\n<tr>\n<td style=\"margin-top: 10;\"><img loading=\"lazy\" decoding=\"async\" width=\"50\" height=\"50\" class=\"size-full wp-image-13384 alignleft\" style=\"margin-top: 0px; margin-right: 0px; max-width: 50px;\" src=\"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2024\/02\/1-icon-50x50-1.png\" alt=\"1.\" \/><\/td>\n<td style=\"padding: 10px;\">Give employees the ability to create new workspaces across your Microsoft 365 applications. By maintaining all data on a unified Microsoft 365 tenant, you ensure that your governance strategy applies to any new workspaces.<\/td>\n<td style=\"top; margin-top: 10;\"><img loading=\"lazy\" decoding=\"async\" width=\"50\" height=\"50\" class=\"size-full wp-image-13403 alignleft\" style=\"margin-top: 0px; margin-right: 0px; max-width: 50px;\" src=\"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2024\/02\/2-icon-50x50-1.png\" alt=\"2\" \/><\/td>\n<td style=\"padding: 10px;\">Limit your taxonomy to a maximum of five parent labels and five sub-labels. That way, employees won\u2019t feel overwhelmed by the volume of different options.<\/td>\n<\/tr>\n<tr>\n<td style=\"margin-top: 10;\"><img loading=\"lazy\" decoding=\"async\" width=\"50\" height=\"50\" class=\"size-full wp-image-13405 alignleft\" style=\"margin-top: 0px; margin-right: 0px; max-width: 50px;\" src=\"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2024\/02\/3-icon-50x50-1.png\" alt=\"3\" \/><\/td>\n<td style=\"padding: 10px;\">Make your labels simple and legible. For example, a \u201cBusiness-critical\u201d label might imply confidentiality, but every employee\u2019s work feels critical to them. On the other hand, there\u2019s very little doubt about what \u201cHighly confidential\u201d or \u201cPublic\u201d mean.<\/td>\n<td style=\"margin-top: 10;\"><img loading=\"lazy\" decoding=\"async\" width=\"50\" height=\"50\" class=\"size-full wp-image-13406 alignleft\" style=\"margin-top: 0px; margin-right: 0px; max-width: 50px;\" src=\"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2024\/02\/4-icon-50x50-1.png\" alt=\"4\" \/><\/td>\n<td style=\"padding: 10px;\">Label your data containers for segmentation to ensure your data isn\u2019t overexposed by default. Consider setting your container label defaults to the \u201cPrivate: no guests\u201d setting.<\/td>\n<\/tr>\n<tr>\n<td style=\"margin-top: 10;\"><img loading=\"lazy\" decoding=\"async\" width=\"50\" height=\"50\" class=\"size-full wp-image-13407 alignleft\" style=\"margin-top: 0px; margin-right: 0px; max-width: 50px;\" src=\"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2024\/02\/5-icon-50x50-1.png\" alt=\"5\" \/><\/td>\n<td style=\"padding: 10px;\">Derive file labels from their parent container labels. That consistency boosts security at multiple levels and ensures that deviations from the default are exceptions, not the norm.<\/td>\n<td style=\"margin-top: 10;\"><img loading=\"lazy\" decoding=\"async\" width=\"50\" height=\"50\" class=\"wp-image-13447 size-full alignleft\" style=\"margin-top: 0px; margin-right: 0px; max-width: 50px;\" src=\"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2024\/02\/6-icon-50x50-1.png\" alt=\"6\" \/><\/td>\n<td style=\"padding: 10px;\">Train your employees to handle and label sensitive data to increase accuracy and ensure they recognize labeling cues across your productivity suite.<\/td>\n<\/tr>\n<tr>\n<td style=\"margin-top: 10;\"><img loading=\"lazy\" decoding=\"async\" width=\"50\" height=\"50\" class=\"size-full wp-image-13448 alignleft\" style=\"margin-top: 0px; margin-right: 0px; max-width: 50px;\" src=\"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2024\/02\/7-icon-50x50-1.png\" alt=\"7\" \/><\/td>\n<td style=\"padding: 10px;\">Trust your employees to apply sensitivity labels, but also verify them. Check against data loss prevention standards and use auto-labeling and quarantining through Microsoft Purview automation.<\/td>\n<td style=\"margin-top: 10;\"><img loading=\"lazy\" decoding=\"async\" width=\"50\" height=\"50\" class=\"size-full wp-image-13950 alignleft\" style=\"margin-top: 0px; margin-right: 0px; max-width: 50px;\" src=\"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2024\/04\/8-icon-50x50-1.png\" alt=\"8\" \/><\/td>\n<td style=\"padding: 10px;\">Use strong lifecycle management policies that require employees to attest containers, creating a chain of accountability.<\/td>\n<\/tr>\n<tr>\n<td style=\"margin-top: 10;\"><img loading=\"lazy\" decoding=\"async\" width=\"50\" height=\"50\" class=\"size-full wp-image-13951 alignleft\" style=\"margin-top: 0px; margin-right: 0px; max-width: 50px;\" src=\"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2024\/04\/9-icon-50x50-1.png\" alt=\"9\" \/><\/td>\n<td style=\"padding: 10px;\">Limit oversharing at the source by enabling company-shareable links rather than forcing employees to add large groups for access. For highly confidential items, limit sharing to employees on a \u201cneed-to-know\u201d basis.<\/td>\n<td style=\"margin-top: 10;\"><img loading=\"lazy\" decoding=\"async\" width=\"50\" height=\"50\" class=\"size-full wp-image-13978 alignleft\" style=\"margin-top: 0px; margin-right: 0px; max-width: 50px;\" src=\"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2024\/04\/10-icon-50x50-1.png\" alt=\"\" \/><\/td>\n<td style=\"padding: 10px;\">Use <a href=\"https:\/\/learn.microsoft.com\/en-us\/graph\/data-connect-concept-overview\" target=\"_blank\" rel=\"noopener\">Microsoft Graph Data Connect<\/a> extraction in conjunction with Microsoft Purview to catch and report oversharing after the fact. When you find irregularities, contain the vulnerability or require the responsible party to repair it themselves.<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n<p>Overall, it\u2019s important to be thoughtful about your governance strategy at each stage of this process. For a deeper dive into how we tackled these challenges and inspiration for your own initiatives, review our <a href=\"https:\/\/www.microsoft.com\/insidetrack\/blog\/microsoft-creates-self-service-sensitivity-labels-in-microsoft-365\/\">technical overview<\/a> of Microsoft\u2019s self-service sensitivity labeling efforts.<\/p>\n<h2>Realizing generative AI\u2019s potential<\/h2>\n<p>As our teams navigate AI governance and drive adoption among employees, it\u2019s important to keep in mind that these guardrails aren\u2019t there to hinder progress. They\u2019re in place to protect and ultimately inspire confidence in new tools.<\/p>\n<p>\u201cIn its best form, governance is a way to educate and inform our organization to move forward as quickly as possible,\u201d Hempey says. \u201cWe see safeguards as accelerators.\u201d<\/p>\n<p>We know our customers also want to empower their employees with generative AI. As a result, we\u2019re discovering ways to leverage or extend these services in exciting new ways for the organizations using our products.<\/p>\n<p>\u201cAs we\u2019re on this journey, we\u2019re learning alongside our industry peers,\u201d Nasir says. \u201cBy working through these important questions and challenges, we\u2019re positioned to empower progress for our customers in this space.\u201d<\/p>\n<h2><strong><img loading=\"lazy\" decoding=\"async\" width=\"300\" height=\"74\" class=\"alignnone size-medium wp-image-7448\" src=\"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2021\/10\/key-takeaways-300x74.png\" alt=\"Key Takeaways\" srcset=\"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2021\/10\/key-takeaways-300x74.png 300w, https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2021\/10\/key-takeaways.png 500w\" sizes=\"(max-width: 300px) 100vw, 300px\" \/><\/strong><\/h2>\n<p>Consider these tips as you think about governing the deployment of generative AI at your company:<\/p>\n<ul class=\"c-list\">\n<li>Understand that IT organizations have inherently cautious habits.<\/li>\n<li>Leverage what industry leaders like the Responsible AI Initiative are sharing.<\/li>\n<li>Recognize that employees will adopt these tools on their own, so it\u2019s best to prepare the way beforehand.<\/li>\n<li>Consider your existing data hygiene and how it needs to extend to accommodate AI.<\/li>\n<li>Make sure you have an enterprise plan for ensuring labeling and security, because AI tools will provide the most complete access by default.<\/li>\n<\/ul>\n<h2><img loading=\"lazy\" decoding=\"async\" width=\"300\" height=\"68\" class=\"alignnone size-medium wp-image-11919\" src=\"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2023\/07\/OKR_Try_it_out-300x68.png\" alt=\"Try it out\" srcset=\"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2023\/07\/OKR_Try_it_out-300x68.png 300w, https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2023\/07\/OKR_Try_it_out-1024x234.png 1024w, https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2023\/07\/OKR_Try_it_out-768x175.png 768w, https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2023\/07\/OKR_Try_it_out.png 1319w\" sizes=\"(max-width: 300px) 100vw, 300px\" \/><\/h2>\n<p>Get started on your own next-generation AI revolution\u2014<a href=\"https:\/\/blogs.microsoft.com\/blog\/2023\/03\/16\/introducing-microsoft-365-copilot-your-copilot-for-work\/?OCID=InsideTrack_Product_10521\" target=\"_blank\" rel=\"noopener\">try Microsoft 365 Copilot today<\/a>.<\/p>\n<h2><img loading=\"lazy\" decoding=\"async\" width=\"300\" height=\"81\" class=\"alignnone size-medium wp-image-7482\" src=\"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2021\/10\/related_links-300x81.png\" alt=\"Related links\" srcset=\"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2021\/10\/related_links-300x81.png 300w, https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2021\/10\/related_links.png 500w\" sizes=\"(max-width: 300px) 100vw, 300px\" \/><\/h2>\n<ul class=\"c-list\">\n<li><a href=\"\/insidetrack\/blog\/the-ai-revolution-how-microsoft-is-responding-with-an-ai-center-of-excellence\/\">Learn how Microsoft is responding to the AI revolution with a Center of Excellence<\/a>.<\/li>\n<li><a href=\"\/insidetrack\/blog\/transforming-data-governance-at-microsoft-with-microsoft-purview-and-microsoft-fabric\/\">Discover transforming data governance at Microsoft with Purview and Fabric.<\/a><\/li>\n<li><a href=\"\/insidetrack\/blog\/a-foundation-for-modern-collaboration-microsoft-365-bolsters-teamwork\/\">Explore how we use Microsoft 365 to bolster our teamwork.<\/a><\/li>\n<\/ul>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"alignnone wp-image-12081 size-full\" style=\"margin-top: 15px;\" src=\"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2023\/05\/Customer-Survey-580x85-1.png\" alt=\"We'd like to hear from you!\" width=\"580\" height=\"85\" srcset=\"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2023\/05\/Customer-Survey-580x85-1.png 580w, https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2023\/05\/Customer-Survey-580x85-1-300x44.png 300w\" sizes=\"(max-width: 580px) 100vw, 580px\" \/><\/p>\n<p><a href=\"https:\/\/forms.office.com\/r\/czbs6PptPe\" target=\"_blank\" rel=\"noopener\">Please share your feedback with us\u2014take our survey and let us know what kind of content is most useful to you.<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Copilot for Microsoft 365 Deployment and Adoption Guide Read our step-by-step guide on deploying Copilot for Microsoft 365 at your company. It\u2019s based on our experience deploying it here at Microsoft: Full version eBook version Version for executives eBook version for executives Since generative AI exploded onto the scene, it\u2019s been unleashing our employees\u2019 creativity,&#8230;<\/p>\n","protected":false},"author":21,"featured_media":12396,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"jetpack_post_was_ever_published":false,"_jetpack_newsletter_access":"","_jetpack_dont_email_post_to_subs":false,"_jetpack_newsletter_tier_id":0,"_jetpack_memberships_contains_paywalled_content":false,"_jetpack_memberships_contains_paid_content":false,"footnotes":"","jetpack_publicize_message":"","jetpack_publicize_feature_enabled":true,"jetpack_social_post_already_shared":true,"jetpack_social_options":{"image_generator_settings":{"template":"highway","enabled":false}}},"categories":[1],"tags":[199,330,434,95],"coauthors":[138],"jetpack_publicize_connections":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v22.8 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>Getting the Most Out of Generative AI at Microsoft with Good Governance<\/title>\n<meta name=\"description\" content=\"Learn how our smart approach to governance at Microsoft is helping us safely unlock the benefits of next-generation AI in tools like Microsoft 365 Copilot.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.microsoft.com\/insidetrack\/blog\/getting-the-most-out-of-generative-ai-at-microsoft-with-good-governance\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Getting the Most Out of Generative AI at Microsoft with Good Governance\" \/>\n<meta property=\"og:description\" content=\"Learn how our smart approach to governance at Microsoft is helping us safely unlock the benefits of next-generation AI in tools like Microsoft 365 Copilot.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.microsoft.com\/insidetrack\/blog\/getting-the-most-out-of-generative-ai-at-microsoft-with-good-governance\/\" \/>\n<meta property=\"og:site_name\" content=\"Inside Track Blog\" \/>\n<meta property=\"article:published_time\" content=\"2023-10-19T17:43:30+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2024-05-23T20:44:48+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2023\/10\/10521-hero.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"2000\" \/>\n\t<meta property=\"og:image:height\" content=\"1333\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"Lukas Velush\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@https:\/\/twitter.com\/luvelush\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Lukas Velush\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"13 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/getting-the-most-out-of-generative-ai-at-microsoft-with-good-governance\/\",\"url\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/getting-the-most-out-of-generative-ai-at-microsoft-with-good-governance\/\",\"name\":\"Getting the Most Out of Generative AI at Microsoft with Good Governance\",\"isPartOf\":{\"@id\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/getting-the-most-out-of-generative-ai-at-microsoft-with-good-governance\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/getting-the-most-out-of-generative-ai-at-microsoft-with-good-governance\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2023\/10\/10521-hero.jpg\",\"datePublished\":\"2023-10-19T17:43:30+00:00\",\"dateModified\":\"2024-05-23T20:44:48+00:00\",\"author\":{\"@id\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/#\/schema\/person\/9a0f1c52bf68827638ed385b108d2e35\"},\"description\":\"Learn how our smart approach to governance at Microsoft is helping us safely unlock the benefits of next-generation AI in tools like Microsoft 365 Copilot.\",\"breadcrumb\":{\"@id\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/getting-the-most-out-of-generative-ai-at-microsoft-with-good-governance\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.microsoft.com\/insidetrack\/blog\/getting-the-most-out-of-generative-ai-at-microsoft-with-good-governance\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/getting-the-most-out-of-generative-ai-at-microsoft-with-good-governance\/#primaryimage\",\"url\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2023\/10\/10521-hero.jpg\",\"contentUrl\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2023\/10\/10521-hero.jpg\",\"width\":2000,\"height\":1333,\"caption\":\"Our smart approach to governance at Microsoft is helping us safely unlock the benefits of next-generation AI in tools like Microsoft 365 Copilot.\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/getting-the-most-out-of-generative-ai-at-microsoft-with-good-governance\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Getting the most out of generative AI at Microsoft with good governance\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/#website\",\"url\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/\",\"name\":\"Inside Track Blog\",\"description\":\"How Microsoft does IT\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/#\/schema\/person\/9a0f1c52bf68827638ed385b108d2e35\",\"name\":\"Lukas Velush\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/#\/schema\/person\/image\/7b4b608566e3d92ddebdbb078d008641\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/7b1db226d5d0596e759e4c44f7275a99?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/7b1db226d5d0596e759e4c44f7275a99?s=96&d=mm&r=g\",\"caption\":\"Lukas Velush\"},\"description\":\"Lukas Velush tells the story of how Microsoft uses its own technology on this blog and on the Microsoft Digital Inside Track website (link near the top left of your screen). He's a recovering journalist who needs to not take himself too seriously.\",\"sameAs\":[\"https:\/\/www.linkedin.com\/in\/lukas-velush-5573762\/\",\"https:\/\/x.com\/https:\/\/twitter.com\/luvelush\"],\"url\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/author\/lukas-velush\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Getting the Most Out of Generative AI at Microsoft with Good Governance","description":"Learn how our smart approach to governance at Microsoft is helping us safely unlock the benefits of next-generation AI in tools like Microsoft 365 Copilot.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.microsoft.com\/insidetrack\/blog\/getting-the-most-out-of-generative-ai-at-microsoft-with-good-governance\/","og_locale":"en_US","og_type":"article","og_title":"Getting the Most Out of Generative AI at Microsoft with Good Governance","og_description":"Learn how our smart approach to governance at Microsoft is helping us safely unlock the benefits of next-generation AI in tools like Microsoft 365 Copilot.","og_url":"https:\/\/www.microsoft.com\/insidetrack\/blog\/getting-the-most-out-of-generative-ai-at-microsoft-with-good-governance\/","og_site_name":"Inside Track Blog","article_published_time":"2023-10-19T17:43:30+00:00","article_modified_time":"2024-05-23T20:44:48+00:00","og_image":[{"width":2000,"height":1333,"url":"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2023\/10\/10521-hero.jpg","type":"image\/jpeg"}],"author":"Lukas Velush","twitter_card":"summary_large_image","twitter_creator":"@https:\/\/twitter.com\/luvelush","twitter_misc":{"Written by":"Lukas Velush","Est. reading time":"13 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/www.microsoft.com\/insidetrack\/blog\/getting-the-most-out-of-generative-ai-at-microsoft-with-good-governance\/","url":"https:\/\/www.microsoft.com\/insidetrack\/blog\/getting-the-most-out-of-generative-ai-at-microsoft-with-good-governance\/","name":"Getting the Most Out of Generative AI at Microsoft with Good Governance","isPartOf":{"@id":"https:\/\/www.microsoft.com\/insidetrack\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.microsoft.com\/insidetrack\/blog\/getting-the-most-out-of-generative-ai-at-microsoft-with-good-governance\/#primaryimage"},"image":{"@id":"https:\/\/www.microsoft.com\/insidetrack\/blog\/getting-the-most-out-of-generative-ai-at-microsoft-with-good-governance\/#primaryimage"},"thumbnailUrl":"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2023\/10\/10521-hero.jpg","datePublished":"2023-10-19T17:43:30+00:00","dateModified":"2024-05-23T20:44:48+00:00","author":{"@id":"https:\/\/www.microsoft.com\/insidetrack\/blog\/#\/schema\/person\/9a0f1c52bf68827638ed385b108d2e35"},"description":"Learn how our smart approach to governance at Microsoft is helping us safely unlock the benefits of next-generation AI in tools like Microsoft 365 Copilot.","breadcrumb":{"@id":"https:\/\/www.microsoft.com\/insidetrack\/blog\/getting-the-most-out-of-generative-ai-at-microsoft-with-good-governance\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.microsoft.com\/insidetrack\/blog\/getting-the-most-out-of-generative-ai-at-microsoft-with-good-governance\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.microsoft.com\/insidetrack\/blog\/getting-the-most-out-of-generative-ai-at-microsoft-with-good-governance\/#primaryimage","url":"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2023\/10\/10521-hero.jpg","contentUrl":"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2023\/10\/10521-hero.jpg","width":2000,"height":1333,"caption":"Our smart approach to governance at Microsoft is helping us safely unlock the benefits of next-generation AI in tools like Microsoft 365 Copilot."},{"@type":"BreadcrumbList","@id":"https:\/\/www.microsoft.com\/insidetrack\/blog\/getting-the-most-out-of-generative-ai-at-microsoft-with-good-governance\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.microsoft.com\/insidetrack\/blog\/"},{"@type":"ListItem","position":2,"name":"Getting the most out of generative AI at Microsoft with good governance"}]},{"@type":"WebSite","@id":"https:\/\/www.microsoft.com\/insidetrack\/blog\/#website","url":"https:\/\/www.microsoft.com\/insidetrack\/blog\/","name":"Inside Track Blog","description":"How Microsoft does IT","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.microsoft.com\/insidetrack\/blog\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"en-US"},{"@type":"Person","@id":"https:\/\/www.microsoft.com\/insidetrack\/blog\/#\/schema\/person\/9a0f1c52bf68827638ed385b108d2e35","name":"Lukas Velush","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.microsoft.com\/insidetrack\/blog\/#\/schema\/person\/image\/7b4b608566e3d92ddebdbb078d008641","url":"https:\/\/secure.gravatar.com\/avatar\/7b1db226d5d0596e759e4c44f7275a99?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/7b1db226d5d0596e759e4c44f7275a99?s=96&d=mm&r=g","caption":"Lukas Velush"},"description":"Lukas Velush tells the story of how Microsoft uses its own technology on this blog and on the Microsoft Digital Inside Track website (link near the top left of your screen). He's a recovering journalist who needs to not take himself too seriously.","sameAs":["https:\/\/www.linkedin.com\/in\/lukas-velush-5573762\/","https:\/\/x.com\/https:\/\/twitter.com\/luvelush"],"url":"https:\/\/www.microsoft.com\/insidetrack\/blog\/author\/lukas-velush\/"}]}},"jetpack_featured_media_url":"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2023\/10\/10521-hero.jpg","jetpack_sharing_enabled":true,"jetpack_shortlink":"https:\/\/wp.me\/p9hcZA-3dR","_links":{"self":[{"href":"https:\/\/www.microsoft.com\/insidetrack\/blog\/wp-json\/wp\/v2\/posts\/12391"}],"collection":[{"href":"https:\/\/www.microsoft.com\/insidetrack\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.microsoft.com\/insidetrack\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.microsoft.com\/insidetrack\/blog\/wp-json\/wp\/v2\/users\/21"}],"replies":[{"embeddable":true,"href":"https:\/\/www.microsoft.com\/insidetrack\/blog\/wp-json\/wp\/v2\/comments?post=12391"}],"version-history":[{"count":27,"href":"https:\/\/www.microsoft.com\/insidetrack\/blog\/wp-json\/wp\/v2\/posts\/12391\/revisions"}],"predecessor-version":[{"id":15004,"href":"https:\/\/www.microsoft.com\/insidetrack\/blog\/wp-json\/wp\/v2\/posts\/12391\/revisions\/15004"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.microsoft.com\/insidetrack\/blog\/wp-json\/wp\/v2\/media\/12396"}],"wp:attachment":[{"href":"https:\/\/www.microsoft.com\/insidetrack\/blog\/wp-json\/wp\/v2\/media?parent=12391"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.microsoft.com\/insidetrack\/blog\/wp-json\/wp\/v2\/categories?post=12391"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.microsoft.com\/insidetrack\/blog\/wp-json\/wp\/v2\/tags?post=12391"},{"taxonomy":"author","embeddable":true,"href":"https:\/\/www.microsoft.com\/insidetrack\/blog\/wp-json\/wp\/v2\/coauthors?post=12391"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}