Integration documentation: Purview Sensitivity Labels
When Datamapper scans files in OneDrive and detects GDPR-sensitive information, it can automatically apply a Microsoft Purview Sensitivity Label directly to the file in its original location — making risk files visible and actionable without any manual effort.
Prerequisites
Two Sensitivity Labels must be created and published in your Microsoft Purview tenant, and assigned to each relevant OneDrive account:
| Datamapper-risk | Applied to files where Datamapper has identified sensitive or personal data. |
| Datamapper-highrisk | Applied to files where Datamapper has identified risk numbers such as passport numbers and personal identity numbers, which require urgent attention. |
Once created, you can view the label status for each account under Locations → OneDrive in Datamapper.
See the Microsoft Purview documentation for guidance on creating labels and publishing them via a label policy.
How it works
1. Datamapper scans new files from the configured OneDrive account.
2. Files classified as risk or high-risk are checked against the available Purview labels for that account.
3. If the matching label exists, Datamapper applies it to the file in its original OneDrive location. No file is moved or copied.
4. If a label is missing, the file is still classified in Datamapper — but no label is applied in OneDrive.
Starting a scan without both labels — Datamapper will show a confirmation prompt if one or both labels are missing for an account, so you can decide whether to proceed without labeling.
If you have any questions, do not hesitate to reach out to our Customer Success team via support@safeonline.dk 👋🏻