Microsoft Purview Data Governance Reviews

We are using Microsoft Purview for Azure Information Protection and DLP to create automatic labeling and policies for sensitive labels. We are also using Insider Risk Management, Communication Compliance, and Records Management for our client.

Microsoft Purview provides data protection across multi-cloud and multi-platform environments, which is essential. Some of our clients require these measures because their systems must be secure and their data must be protected from loss for auditing purposes. Therefore, the client is requesting that we enable all of these features for the system.

It is important that Microsoft Purview was built taking into account critical regulations from around the world.

The data loss protection helps remediate policy violations.

Data loss protection helps educate users on how to handle sensitive data.

It improved our visibility into our environment.

Microsoft Purview helps us show our compliance in real time.

Microsoft Purview helps reduce our time to action against threats. It takes some time for the initial configuration, but it detects as soon as the configuration is enabled.

Microsoft Purview integrations with non-Microsoft products have room for improvement.

The technical support has room for improvement.

I have been using Microsoft Purview for four months.

Microsoft Purview is generally stable, but some of our clients occasionally experience accessibility issues when connecting to the cloud.

Microsoft Purview is scalable.

From a technical support standpoint, I have raised many tickets to date. Within this format, I have raised more than fifteen tickets for various purposes. I feel that few technical team members have a good understanding of the problems we are trying to explain. The rest of them waste our time. Typically, they say they will get back to us after two or three days, but then they come back to the same place they left off. Only a few technical team members are knowledgeable about Microsoft Purview. We still have tickets that are open to this date.

Neutral

The price is reasonable because most of our clients already have an E3 license, which makes implementation easy. For other clients who do not have an E3 license, the cost is higher because they must purchase the package.

I would rate Microsoft Purview seven out of ten.

Maintenance is done by the vendor.

I recommend Microsoft Purview for organizations with an existing E3 license, rather than spending money on a third-party DLP.

Our IT team, data engineering team, and data science team all rely on Microsoft Purview for a unified data repository. We maintain a table for storing sensitive data with segregated access. To readily understand the data types within, anyone can simply leverage Microsoft Purview's classification system. By selecting a specific classification, users gain access to relevant table details.

If we create keys for non-Microsoft data sources, we can leverage Purview's data connector platform to connect and ingest the data.

It is good that Purview takes into account critical regulations from around the world.

Microsoft Purview has greatly improved our organization's ability to view and share permissions with minimal human intervention. Searching for desired information is now a breeze. However, integrating permissions for access in large environments can be a stumbling block. With ten departments, granting access to a single table for one department is straightforward. But when access to multiple tables is required, they must go through the main administrator for verification.

Microsoft Purview shows us compliance in real-time.

Data segregation is the most valuable feature. This provides clear visibility into the hierarchy of data flow, including its destinations, loading points, and table updates.

While Microsoft Purview offers data protection across multi-cloud and multi-platform environments, granting access in such complex settings can be lengthy and expensive.

Every scan we perform incurs a charge, making exploration quite costly.

I would like to have complete video documentation for training.

I have been using Microsoft Purview for six months.

In my experience with Microsoft Purview for our data governance project, I'd rate its stability at a seven out of ten. While it excels during exploration phases with use cases and demos, we encountered some challenges during implementation.

Each time we contact Microsoft support, the support person seems new and has to look into the issue because they've never encountered it before.

Neutral

Deploying initially is simple. It only takes as long as creating a storage account in the Azure portal, which is quick.

Microsoft Purview is expensive.

I would rate Microsoft Purview a seven out of ten.

Our current clients are medium-sized businesses.

In the six months we have been using Microsoft Purview it has not required any maintenance.

I'm a cloud consultant and prefer Azure Purview as a governance tool. A few of my clients are in the banking sector, including global and Indian banks. They need a centralized solution for compliance and governance. 

I haven't used Purview much for SaaS or device management, but I have explored the SaaS services and PaaS in terms of other tools that can be integrated with Azure Purview. Our clients often have an ETL solution that's in Azure directly. Most of our clients use Synapse Analytics or Databricks. One of our energy clients in Australia has the same use case for data platform implementation. They have some unstructured data on-premises, and it goes back to the Azure storage account as raw data. They do some transformation with the help of an ETL tool. For agentless forecasting, they do model training with the help of Databricks or Azure machine learning. They'll use Power BI for visualization, but Purview is the centralized governance tool.

Purview improves compliance and governance with data source and auto-scanning features. All those data assets would be in a centralized repo that pulls from different sources and databases that hold the bank data or the customer's data. The solution enhances compliance in terms of security factors and issues like duplication. It scans for new data coming in and older data that already exists. Purview collects the metadata to get a clearer visualization of all the compliance aspects. 

Another benefit is accelerated migration. Purview facilitates smooth migrations by giving clients insights into their data, which data is useful, and what kind of data is non-compliant, so you can classify data based on compliance, priority, and utility. It helps clients decide which data is essential and should be migrated. Identifying non-compliant data can help clients improve security and privacy.

Data analysis and classification isn't a two-day or two-week job. It's a long-term process. It might take two or three months to gather feedback on what kind of data is the most beneficial, like structural data, static data, etc. The data lineage doesn't come in one or two days. It takes some time to get a complete picture of your source and destination and the data cycle from start to finish. You can say that the data was in this phase six months ago, and now it is in this phase. Six months is enough to get a clear picture of the data flow and the kinds of data that are most beneficial.  Purview is helpful for long-term data management and classification.

Purview improves visibility. If I go back to a year ago, when I was learning Purview, my perspective was different. There were fewer features, and Purview has grown at a rapid pace. I was originally a network engineer, but I am now a cloud consultant, so it was challenging to work with the Azure version initially. I started seeing the benefits of its data classification features once I started consulting, seeing everything that comes into a client's bucket, and receiving feedback. Now, I can see the solution's strengths in governance and compliance.

The auto-scanning functionality and automation features in Azure have a positive impact when connecting data sources. When there are multiple data sources, we can make connections and start discovery. Manual discovery will take so long, and we don't know when the new data is coming in, so automation is useful. When new data comes into the databases, Purview triggers that auto-discovery part so the data stays updated. It's more efficient and more accurate.

For example, we have let's say we have data coming in this month. We have a discovery scan, and some new data comes into the databases after a day or two. If we don't run the auto-scanning feature, the data will get outdated. It would affect if we need to present something or calculate something. We can discover data quickly and get accurate data. It isn't completely in real-time. It still takes time to refresh things, but we haven't 

Automated discovery reduces the amount of time needed to take action on insider threats. If discovery is already done, it's easier to classify the data and import it into a data visualization tool like Power BI. We need to complete the discovery before moving on to the data lineage component or the Data Factory pipeline. It reduces the time by about 12 to 15 percent.

My favorite Purview feature is auto-scanning. Once we set up Purview, we can automatically scan multiple data sources when new data comes into specific databases, like SQL and Oracle. We don't need to rediscover the new data or do anything manually because it automatically happens.

Purview also offers some additional integration capabilities if you use the Azure edition. We can seamlessly integrate tools like Azure Data Factory and Synapse Analytics to provide analytics and data transformation services in a customer's ETL pipeline. Organizations want to structure that data, so they use a basic ETL tool, which is commonly Azure Data Factory. Purview provides us with all the connectors needed to integrate these data tools. Another feature I like is data lineage. Purview tracks the data from its source to the destination. 

I haven't seen many challenges with integrating or supporting native Microsoft solutions like Office 365. We haven't come across anything in Microsoft 365 that's unsupported out of compliance with HIPAA regulations in the health sector or banking and finance regulations. It conforms to PCI DSS compliance methodology or GDPR.

We have multiple clients in the energy and banking sectors. Purview is vital in data platform implementation projects involving ETL transformations and model training. It's our default tool for governance when we're pitching our organization during presales. However, our smaller customers often don't need that much governance, or they're good with Azure Monitor. They may also prefer some other governance tool or might have an on-premise tool that they are already using. They don't want to change it despite the integration and features. Our big customers may have existing governance tools, but they want to use Purview because it offers additional features. It provides them security, compliance, and the flexibility to integrate with third-party and Azure native tools. 

Two features are unsupported—custom insights and the DLP component—that would be beneficial to me as a consultant and for the customer in terms of security and monitoring. Regarding security, DLP would provide a more granular level of data masking. Custom insights would offer more detailed monitoring and alerts that can notify customers of failures or anything requiring urgent action. 

DLP is not a part of Purview. Our larger customers require some advanced features, such as dynamic data masking, encryption, and decryption. For example, some of our projects in Dubai involve machine learning use cases and encrypted critical data on-premise. It varies. Data encryption and masking are not priorities for some customers.  

Microsoft has some built-in data masking tools. Some customers believe that masked data is safe, and they don't want to move it. We tell the clients that Purview doesn't move the actual data, only the metadata. The customer is convinced that DLP is not part of Purview, but that is not a concern because it's all about metadata. The original data is not transferred from on-premise to Azure. Purview is not storing the actual data. It takes the data to perform discovery and provide better data classifications. If DLP is added, then Purview will be stronger.

When I talk to clients about these DLP features, they say it still lags behind in data integration and support. It does not affect the sales side or prevent us as consultants from convincing them to switch because of these two unsupported features. However, Purview does need some improvements in data security and third-party integrations.

I have worked with Purview for a year. 

I rate Purview six out of 10 for stability. It is stable, but they're constantly adding new features, so it needs more stability in the future. 

Purview is a scalable solution because Microsoft manages everything on the back end. We don't need to handle any databases or servers. We can talk about the general scalability of Azure services, not Purview specifically. The SLA gives an uptime of 99.99 percent. I have not had any scalability issues with Azure services, and this goes for Purview as well.

I rate Microsoft support seven out of 10. They respond quickly and follow up fast after the issue has been closed to see if the problem is resolved. 

Neutral

I have not used GCP, but the AWS centralized governance tool lags in terms of authentication and authorization. AWS also has features like data lineage it can provide. However, Purview stands out for security protections and role-based access control. Purview offers better granularity compared to the AWS or GCP governance tools. The access control list enables granular levels of access to its users. 

Deploying Purview isn't too complex. The initial installation takes about eight hours. Setting up a data governance solution involves configuring the networking components. The networking part can be done in parallel with deploying other services. However, you must completely implement the data platform before connecting the data sources and performing data discovery. Later, you can begin the data analysis and classification on Purview. 

The data deployment and networking configuration is similar to deploying other Azure services. I imagine on-prem Purview requires more time to set up. If we are giving a client an estimate of the time it would take to complete the project, the deployment and networking part would not additional time. However, the data discovery, classification, lineage, and data source connectivity, require two more weeks. The total deployment takes five to eight weeks plus an additional two weeks for the discovery phase.

The networking engineer who deployed Databricks, Azure Data Factory, Synapse Analytics, etc. can easily deploy Purview because it's the same. However, we require a dedicated Purview engineer for the discovery phase. We haven't had to do much maintenance so far. 

Microsoft Purview is priced in the middle. It isn't the cheapest, but it isn't the most expensive. It's affordable compared to other public cloud services. Purview costs about 20 percent less than AWS, but it is still expensive compared to other Azure services and governance tools. 

I rate Microsoft Purview seven out of 10. I recommend Purview over other governance features because it has multiple features that make it stand out from the rest. Once it is updated with features like DLP and custom insights, Purview will be a market leader. These additional features will help the solution earn more enterprise-scale customers. 

We use Microsoft Purview to protect and govern our information.

It is important for Microsoft Purview to provide data protection across multi-cloud and multi-platform environments, including AWS and GCP. I have been a consultant for a year and a half, advising mostly European enterprise customers. All customers, from mid-sized to larger, have diverse storage solutions. Therefore, it is important for Microsoft Purview to be flexible enough to be applied to various environments, such as multi-cloud. Although the product is not yet there, it is important to many business customers.

The enterprise IT landscape is diverse, with various devices, SaaS applications, and multi-cloud solutions. Protecting and governing information is a need that spans all of these touchpoints and Microsoft Purview helps us do that.

Purview's native integration with Azure Dynamics 365 and Office 365 is essential because many organizations use these Microsoft products. This native integration is unmatched by other solutions.

Purview DataOps Protection does a great job of remediating policy violations. It has a comprehensive reporting and fine-tuning integration that allows us to track policy violations effectively. Overall, I think it does a great job of protecting data.

Purview recently improved in the area of DLP. These tips are now available across different platforms, such as Office and Outlook, and they are getting better. This is helpful in educating users about policies. 

Microsoft Purview helped us control the growth of data, reduce dark data, and better protect against the filtration of data.

Purview increased our visibility into our other Microsoft solutions.

We use AI and automation sparingly. This is not part of Purview directly, but an AI tool that helps us determine if data is redundant or has business value before we move it to Azure or Microsoft 365. We use the AI tool in a very limited way, such as trainable classifiers. We also have the option to use another product called Syntex in collaboration with Purview, but this has not been explored much.

Technically Purview can enable us to show our compliance in real-time.

Purview reduced the time it takes us to act on insider threats by almost 90 percent. Previously, many violations were not reported or took months to be reported. Now, we can act on violations almost instantly, or within days.

Microsoft Purview partially helps organizations stay on top of compliance. The platform provides a number of technical features that can be used to manage compliance, but it is up to organizations to implement these features and take the necessary steps to ensure compliance.

Microsoft Information Protection uses sensitivity labels to classify and protect sensitive information. MIP works together with Data Loss Prevention to prevent sensitive information from being leaked outside of the organization. MIP also helps to mitigate insider risk by preventing unauthorized users from accessing sensitive information.

Purview's data connectivity platform has a good set of connectors for ingesting data from non-Microsoft data sources. However, it still falls short in terms of coverage of other systems. It is mostly integrated with the Microsoft stack, but there are connectors to other systems and sources of information. Overall, Purview is not a one-stop shop for protecting company information.

I am not sure that Purview was built with compliance guidelines in mind. It does have a component called Compliance Manager, which allows us to track our adherence to different standards, such as security and privacy standards around the globe. However, this is more of an add-on. I think there is still a significant gap between the technical capabilities of Purview and the ability to drive compliance or prove compliance through its use. I think this is a major gap that Microsoft does not adequately address. Purview is not a GRC tool. It is a set of security features, labeling features, and lifecycle features that do not come close to GRC tooling in terms of functionality. Additionally, there is no strong integration with the compliance framework, either in terms of rolling it out or proving our adherence to it.

I would like to see improvements to the compliance manager, such as making it easier to start small and grow over time. This is not possible at this time.

The current event-based retention management is very poor. This is an area that needs improvement. We need to be able to more natively or near natively label content for retention and sensitivity across other lines of business systems like Workday and ServiceNow. This would allow us to extend labeling to those applications and make it native. This would be of great benefit to our clients.

Purview's DLP protection has some downsides. One downside is that the tips only appear in native applications. This means that users will not see them in other applications, such as web browsers. Another downside is that the tips only cover a subset of all the information. This means that users may still need to seek out additional information elsewhere.

The technical support has room for improvement.

I have been using Microsoft Purview for a year and a half.

Microsoft Purview is extremely stable.

Microsoft Purview is highly scalable.

The first level of support is not very knowledgeable and it is hard to get proper support because of the procedures in place.

Neutral

The initial deployment was complex, but not because of technical difficulties. The main challenge was engaging end users and getting them to adopt the new system. This was because the system required them to think about information in a new way. The deployment took around 12 months and required five to ten people working two days a week.

The implementation was completed in-house.

The return on investment is very good for what Purview offers, but it does lack some of the features that other solutions have. For example, if we're replacing something that already exists, we could do something cheaper or quicker. However, the value of this solution is in its ability to mitigate risk. If we don't have any type of classification and security in place, we're always opening ourselves up to risks. The cost of this solution is high, but the cost of not having it could be much higher. The return on investment is around 200 percent.

Some people find the tier licensing system complicated, but it offers a lot of value for money if we use the features. In fact, many clients who use the E5 licenses find that they can get a better return on investment on those licenses. Once they do, they find that the tier licensing system is very fairly priced.

I give Microsoft Purview an eight out of ten.

Time to value is quite long, especially when it impacts end users and requires new skills and knowledge. This is especially true in IT departments and on the business side. However, once the value is realized, the return on investment can be very good.

This type of solution is deployed across the entire Microsoft 365 tenant. It also has an Azure side, which is two things across that tenant as well. There is no area where it is used more or less. However, there is more interest in the areas of security and privacy. Therefore, legal, HR and IT are the most likely places to deploy this solution. Finance and merger and acquisition are also areas where people have more interest in deploying Purview. However, it is normally deployed across the entire organization.

We have around 30 clients consisting of anywhere between 20,000 and 50,000 users.

The maintenance is overseen by a full-time compliance technical person and a compliance business person.

I would advise assessing the maturity of the people and processes before using these types of tools. The technical side of things is not too complicated but we need to have the people and processes in place to classify all of our information and to ensure that our policies are being triggered. This can be a challenge for many organizations, as most have dark data, especially on structured clients. Ultimately, it is the people and the processes that make the success of these tools, not the technology itself.

We use it for the text of emails. We use it to keep track of groups as well. We also use it to go through the mailbox of a former employee to retrieve the mailbox for a new employee. We use it for e-discovery and content search in emails across our organization.

We use it internally for just a few use cases. I know there are a lot of connections between it and other Microsoft applications and multiple clouds, but we don't have those use cases currently.

We carry out implementations for customers on these particular solutions. For example, if we're selling a Microsoft 365 solution to them, we use it to secure their data, especially their emails through backup, and SharePoint.

It has improved our ability to retain data and retrieve the data that we need at a future date.

We are also able to see how sensitive data flows across the organization, so it has been very helpful in telling us where that data is originally from and where it is being sent to. We have the ability to track it and control and restrict it from going outside our organization. We've benefited from that a lot.

Purview also enables us to show compliance in real time. We can see what the requirements are and then we can apply them across the organization. That has been very helpful.

It has also helped us to stay updated and make sure that we are not out of compliance. It keeps us updated with any new policies that are required for organizations like ours. That's of great value to us.

Another advantage is that it has definitely reduced the time-to-action on insider threats, although we don't measure that at the moment. But from experience, we can tell how much it is saving us in investigations, compared to before we had the solution.

The most valuable feature is the information protection, the way we're able to retain emails.

Another aspect that is very important is that Purview has been built to take critical regulations from around the world into account. It gives us trust that all of the compliance requirements are being met and that we just have to take care of our data. We don't have to worry about whether the regulations are being met around the infrastructure and we can just focus on our data. It's very important to us to have that level of trust in our systems.

Also, Purview's data loss protection for remediating policy violations is very good. It gives you the opportunity to know your data and apply policies around it. If those policies are flouted, you can always track what's happening. You have options such as alerting the person who is committing that action, or you can take automatic action by blocking, for example, an email that is being sent externally. It's very useful.

I've been using it since as far back as when it was Security and Compliance Center, before there was a separation between compliance and security. That happened around 2019, so I've been using it since 2019.

The stability is great. Like every SaaS application, there are infrastructure issues, maybe once a year. Overall, it's good.

The scalability is also great.

The service level agreement is excellent and the support follow-up is also great. They have good knowledge.

Positive

In terms of ROI, my bosses take care of that calculation, but I know we are getting benefit and value from Purview.

The categorization within the licensing could be improved. There are a lot of solutions within Microsoft Purview. If the licensing could be a bit clearer and the solutions could be better categorized according to function and across multiple environments, that would be excellent. The licensing is very confusing.

The pricing, for the solutions and value being provided, is fair. But that ties back to what I said about the licensing. There are a lot of standalone solutions you can get, and there are different licensing options for them. Depending on what you need, you can have a cost-effective solution; you can figure out your cost and benefit. It's affordable.

We are still exploring whether Purview can help reduce the number of solutions that we have interacting with each other. There are a lot of solutions within Microsoft Purview, but we still have some data that is on-prem and we are still looking at how we can expand and connect to those areas. It's something that is in progress.

In terms of maintenance, it's a SaaS solution, so the applications are automatically updated. There's almost zero maintenance. We do have to take care of configuration and updating preferences. I am able to handle that myself.

My advice is to develop a clear use case and a roadmap, perhaps from a consultant if you don't have the time, or spend some time doing research on it, because there are a lot of great solutions within Microsoft Purview. You need to have a strategy for the way you combine the solutions together.

Microsoft Purview has several built-in solutions, including data loss prevention, e-discovery, life cycle management, and information protection. It functions as a DLP tool and includes a compliance portal that enables integration with various other solutions to ensure compliance. Therefore, it provides readily available integrations.

The solution deployed as a SaaS.

It is crucial for Microsoft Purview to offer data protection across various cloud platforms because many customers are now utilizing cloud technology. It is not always the case that everyone will use Azure exclusively, as many customers may have multiple cloud vendors. Therefore, it is essential to support multifunctional or multi-vendor flows to meet the needs of these customers.

To ensure proper functionality and data security, we need to accommodate a wide range of operating systems. Therefore, our solution must support multiple vendors or be multi-tenant, allowing us to have visibility over all devices within our network.

It is important that Microsoft Purview is globally compliant. The solution comes with pre-defined rules and policies, providing us with a wide range of capabilities to manage multiple geolocations simultaneously.

Microsoft Purview's data loss protection feature is helpful in remediating policy violations as it provides extensive forensic data. This includes information such as the user, the activity performed, the starting point, and the flow path of the activity. Additionally, the tool has forensic analytics capabilities that enable us to identify and prioritize policy violations effectively.

Educating users on data loss protection can be straightforward. For example, Microsoft's product includes integrated guides on the console. Whether the user is an individual or an administrator, if they are unsure how to use the product, there are supported guides and links available to assist them. This makes the experience easier and ensures that best practices are followed when managing data loss protection.

It was important that Microsoft extended Purview's data loss prevention to Mac OS endpoints because it enables us to manage all devices on our network through a single console.

Microsoft Purview has simplified my work with its effortless deployment.

Microsoft Purview has decreased the need for multiple solutions to communicate with each other. If we were to discuss other DLP solutions, an additional agent would need to be installed. However, Purview utilizes Defender, which enables it to capture data and obtain all necessary information without requiring the deployment of any other agents. Therefore, there is no need for any additional agents to be installed.

The solution provides visibility into the state of our organization by giving us inventory details and maintaining an updated version or list of the inventories that are currently in use. This allows us to have clear visibility of the devices we are using, specifically end devices. It also enables us to easily manage non-active or disconnected devices.

Microsoft Purview enables us to show our compliance in real-time. 

Microsoft Purview includes multiple predefined sets of compliance rules that can be compared to our specific compliance requirements. We can then map these rules to our policies.

The agent saves us the time and effort of manual reporting. When the device is active, the agents also become active and start reporting. The reporting process takes the same amount of time regardless of which policy we use.

Microsoft Purview helps us to maintain compliance by providing a checklist of tasks that need to be completed, along with mapping.

The ease of integration with other Microsoft solutions is the most valuable feature. 

The availability of pre-designed policies tailored to specific geolocations and customer requirements is also a valuable feature.

The Microsoft Purview data connector platform, which supports ingestion from non-Microsoft data sources, can be somewhat complex. For instance, when using Linux or Mac OS, additional agents are required. However, deploying these agents can lead to high resource consumption, such as increased CPU, hard disk, and RAM usage.

The performance has room for improvement. 

I have been using the solution for three months.

Microsoft Purview is a SaaS platform, so its stability is very good.

The scalability is all based on the license. 

The initial setup is straightforward. For our implementation strategy, we began by collecting inventory details. We then identified the supported devices by their operating systems, separating them into Windows, Mac OS, and Linux. For Linux devices, we created software packages offline and deployed them to the IT assistance team. After the agents started reporting on the console, we restarted the Linux devices. For Windows devices, we were able to connect directly. First, we were in the POC phase, testing a few devices and developing the rules and policies, followed by applying the rules to all the devices.

The number of people required for the deployment depends on our infrastructure and the size of our environment.

The implementation was completed in-house.

I give the solution a seven out of ten.

As a consulting firm, we utilize several Data Loss Prevention solutions such as Symantec DLP, Forcepoint DLP, and Microsoft Purview. Our recommendations to clients are based on their specific needs and financial plan.

Microsoft Purview comprises various solutions, and I recommend acquainting oneself with all of its aspects to make the most of the tool.

We use the product to prevent the loss of personal information across Microsoft 365. 

You can set up automated dates to alert on internal data. 

I don't see any issues with the product's scalability. 

The tool's support is good and very responsive. The first and second lines of support need to improve. 

Microsoft Purview Data Loss Prevention is not cheap. 

We are heavy on the use of iOS. 

It is nice that the product delivers data protection across multiple cloud and platform environments. Azure is our primary cloud. 

We are happy with Microsoft Purview Data Loss Prevention's security and visibility. 

I rate it a five out of ten. 

The primary purpose is to catalog all the different data sources. The idea is to get insight into what is available and, more importantly, to document and better understand the data quickly and easily. You're not doing any manual work, you're just scanning sources, which means you can automate it. It automates the majority of the documenting process.

The most important benefit is its data documentation and the data catalog. It saves a lot of time compared to doing those things manually. Normally, when you want to describe your sources and get an overview of what is available, it takes a lot of time for data engineers and other people in the company to document the data. That whole issue is eliminated by using Purview.

Also, the fact that you can easily view your metadata helps with data exploration. A lot of the time, there are so many sources at a company that at some point, most people don't even know what is available anymore. A really key feature is that not just one person but lots of people can access it for the same price, to do data exploration. They can all see what is available and decide what they want to see in a company report, for example.

The beauty of Purview is that it's all about a central location where everyone goes. I wouldn't recommend creating multiple Purview instances, although you might have one for production and non-production. But, ideally, you would just have one Purview for your entire organization and then provide access to multiple people to make use of it.

On the documenting side, in particular, it saves a lot of time, and time is money, especially when you are dealing with people entering data and information into Excel. That can be replaced by Purview and that saves a lot of time. Purview also gives you information that you can act upon. Instead of finding out too late, you can act earlier, and save money in that sense.

What I like the most about Purview is the fact that you can really easily connect to data sources and retrieve the metadata in a batch manner. Instead of having to manually write down which tables and columns exist and then describe them, you can do that process in one go, by simply connecting to a source. That's a huge time-saver and a great benefit of Purview.

The solution takes into account critical data compliance regulations from around the world and that is one of the most important aspects of Purview. New laws are being enforced for data compliance and a lot of companies have a great interest in this feature of Purview. I think Microsoft is going to be focusing on that for the next couple of years to help organizations improve on data compliance.

In terms of reducing time-to-action, if you set up a clever rule that gets applied to your scan—it would just take some time to create that rule—in theory, whenever you are scanning your data you could identify something that is going on and act upon it. But I haven't seen that in practice yet.

The fact that Purview delivers data protection across multiple platforms, including AWS and GCP, is really important, but I feel the tool can mature further in that area. You can set up rules and scan your data and then you can figure out whether your data is secure and compliant, but feel that Microsoft could improve on this and add more features to the tool. I think they will do so over time. The solution has only been generally available since last year, so it's still quite early in terms of maturity. The multiple platforms feature is very important and there is potential there.

A bit of a downside is that although you can explore the data, that creates a great interest in data lineage or the data flow. How does it go from a source to a platform to a Power BI report, for example? It is possible, to some extent, to see that with Purview, but the lineage feature requires some manual work on the development side or more work from Microsoft to improve on it.

The data lineage is effective and useful when you are using all Microsoft products, but as soon as there's any complexity or you have a different tool in between, like Databricks for data transformations in your platform, for example, the lineage isn't going to be added in Purview because there is no connection to it. On the lineage side, a lot more can be done, but there is a lot of potential.

An additional feature I would like to see is in the following scenario. Suppose you have your sources scanned and you have all the tables listed in Purview. Right now, to update and label them, or to group them, would take a lot of time because you have to manually click on the assets and the tables that you have. But given that a database can have hundreds of tables, it would be helpful if you could update the assets in batch and, possibly, multi-select them. That would be a nice addition.

I have been involved with Microsoft Purview from the private preview stage, which was about two or three years. At that stage, it was only being shared with certain companies and nothing could be shared externally. In that phase, I got to share what I learned from the tool with Microsoft.

I haven't used it all the time since then, but more recently, I got to work with it for a few months so I got to see the latest update and changes that were made.

It is quite stable in terms of the scans running and not failing. It's not going to be slow or not function when you do an action inside of Purview. The stability is great.

It's really scalable, just like most things in Azure. You can add to it but it gets more expensive. You can add as many sources as you want, and the scanning of sources goes quite quickly, even for really big databases. The reason is that you're not copying any actual data, you're only getting the metadata, meaning a description of the tables and the schema, et cetera.

I haven't had to use Microsoft's technical support for Purview.

From my experience with other Microsoft Azure tools, the support is not bad, but it might take some time. Once you get someone working on it, an issue always gets resolved, but it can take a bit of time to get the right person involved to help you out.

For documenting data I have used Excel. I've seen huge Excel files with lots of data descriptions, and they took a lot of time to create. 

Also, on the data quality side of things, I have used an Azure data platform: an SQL database and a Power BI report. For example, if you're scanning data and you apply a rule to check if a column is empty so that you can classify it as "empty column," that would be a data quality rule. Instead of using Purview, I have used Azure.

It's very straightforward. There are not that many fields to fill in initially. Connecting sources, the first step, didn't take a long time. You really quickly get to see things, especially when it comes to Azure sources. It's all integrated so you can connect really easily. You just need to have authentication rights assigned. So connecting is quite fast.

The deployment is all-cloud. It's all Azure, which makes it really easy to deploy the tool really quickly. And if you have other data in the cloud, you can really easily connect to it.

The second part that takes a bit longer is defining the data, just like you would normally describe your tables and your columns and all your data definitions in Excel. In Purview, that also takes a bit of time. You have to find the way to describe it most easily. You can use the rules while scanning your data and automatically label or classify the data. But creating those rules takes a bit of time: How are you going to scan the data and what rules do you apply?

Getting the resources going just takes a day or two. But to connect to them and make things functionally available takes more time.

It's a one-man job. Even for connecting to resources, all you need is an admin who can grant you all the rights that you need for those sources and you can really easily scan them. The part where you need more people is on the business side because you need to describe, understand, and classify your data. That takes a lot more people because one person might know something about the customer database and a different person might know something about the finance database.

There is an investment of time involved, but once you set up those rules and you have the sources to scan, it automatically checks your data. It takes time to set it all up, but over a longer period of time, you will actually save time and see a return on investment. How fast that happens depends on your organization and how many data sources you have, as well as on how many people are using Purview and how efficiently.

You pay a minimum amount every month for the data map. You scan your sources and the metadata gets saved and then you pay for what is stored, which makes sense. However because there is a minimum amount, in the beginning, you might pay for more than you are using. That's something that some of my clients didn't like. That's why I say it's quite pricey; you're always paying a certain amount.

It would be nice if it went to entirely pay-per-use. For example, on Azure, when you have storage accounts, you pay for exactly how much you store. That would be nice to see in Purview as well. And while it's pay-per-use, you pay for features as well. For example, you pay for the cataloging part, including describing your data and adding labels and classifications. I would like to see a standard price and exact pay-per-use. 

I understand, in practice, that might not happen, but the pricing may be a bit overwhelming for some clients. They will say, "Hey, I'm already paying this much and now something else comes with another cost? Why is that?" It raises questions.

I'm working at a company that is a Microsoft partner, so it's all Microsoft-first.

We did do a quick analysis for a few other companies and there is some competition out there, but the other solutions are quite expensive. They are enterprise tools that are a bit more mature but the license costs $100,000 for some of them. Purview is pay-per-use and a lot of companies are interested in that. It's still quite expensive compared to most Azure components, but compared to the alternatives it costs less. That may be because it's not that advanced yet.

My advice is to involve people from the business side who can describe data and describe business terms. That's what is most important. Otherwise, it's just going to stay a technical implementation and it won't be used, which would be a huge waste. From the start, involve the people with a mandate who can actually start using it in the future.

Regarding its data connector platform for ingestion from non-Microsoft data sources, there are so many sources in the world that they have a ways to go there, but I do feel, especially in the last year, that the solution has grown a lot in that area. All the big, and most-used data sources, like Amazon, SAP, and many other sources, have been added, which is a great step. But if you work with sources that are more unique, the kind that are not used by many other companies, those are not available and you would have to write code in Purview for them. You can use the API that is available and you could insert metadata and lineage information into Purview, but that is a manual process. You would have to develop that for specific sources.

Purview's natively integrated compliance across Azure, Dynamics 365, and Office 365 is also quite important, but I haven't worked on that myself.

In my experience, Purview hasn't come far enough yet to help us reduce the number of solutions that interact with each other. We use Purview right next to all the other tools, which is okay. It takes a lot of time for a company to adapt to using Purview. You can scan data quite easily and figure out how to apply rules and classify and document your data, but you still need people to adapt and make use of it. I haven't really seen that last part very much in practice yet. It takes a bit of change management to get people to make use of it properly. As a result, it hasn't replaced tools yet for me.

Purview doesn't enable you to show compliance in real-time, but you can schedule how often you scan your sources. When the sources are scanned and added to Purview, they become visible and you can see if you're compliant or not, but that's not real-time. You can schedule scans daily, for example, but then you have daily data sets rather than real-time data.

Overall, the potential for this solution is really large. Data management is extremely important and Microsoft is investing very heavily in Purview. Right now, it's not quite there yet.