Spell-check for privacy
Blog
Comparisons 17 min read

Microsoft Purview and BeeSensible: two layers, not a choice

Purview governs data after the fact across your Microsoft estate. BeeSensible marks sensitive data while you type, in the browser. Two moments, and together they cover more.

Microsoft Purview and BeeSensible working as two layers: governance across the Microsoft estate and a warning at the moment of typing
Quick answer

Microsoft Purview is Microsoft's data security and compliance suite. It classifies, labels, governs, and audits data across Microsoft 365 and Azure, and can enforce policy. BeeSensible is a browser extension for Chrome and Edge that marks sensitive data while you type, across 20+ web apps including AI tools, before you send. They act at different moments: Purview is strongest after data is stored or sent and at enforcement inside the Microsoft estate, BeeSensible covers the moment of typing in the browser, including consumer AI tools where Purview enforcement is thinnest. For most teams the right answer is not either-or.

01

Purview governs, classifies, and audits data across the Microsoft estate, and can enforce policy, a strong backbone inside the Microsoft world

02

Purview can act inline in Microsoft Edge for Business, but its browser AI coverage is conditional: device onboarding, endpoint DLP, and an E5 tier

03

Three blind spots remain: consumer AI in other browsers, Shadow AI on unmanaged devices, and the human moment of deciding what to paste

04

BeeSensible fills the moment of typing across Chrome and Edge in 20+ apps, with EU processing and no content storage

05

Purview can log prompts and responses to a person for governance; BeeSensible reports only aggregated counts, never individuals. The two answer different needs

06

Price: the Purview layer that covers the browser lives in E5 or the E5 Compliance add-on; BeeSensible Pro is one plan at €5 per user per month billed yearly, with volume tiers down to €0.39 for large teams, never up

An IT manager at a local council opens the Purview dashboard. Sensitivity labels are configured, the DLP policies are on, the compliance reports show green. From here, everything looks under control.

Two streets away, a policy officer pastes a resident's name, BSN, and a draft decision letter into ChatGPT to have the wording cleaned up. ChatGPT is not on the approved list. The browser is Chrome. The laptop is not onboarded to endpoint DLP. Purview records nothing.

Both people work for the same organisation. Both assume security is handled. The risk simply sat at a different moment: not in the monitoring after the fact, but in the lack of a warning while the text was being typed.

Purview is doing exactly what it is built to do here. This one moment just sits slightly outside its strongest reach.

Short answer. Purview governs and audits data across Microsoft 365, and it can warn inline in Microsoft Edge for Business on managed Windows devices. Where it does not reach: ChatGPT or Claude in Chrome, on a phone or an unmanaged laptop, or on a personal account. That gap is where BeeSensible sits. Not a replacement, a second layer.

Two tools, two moments

"Purview or BeeSensible" is the wrong question. They are not two answers to the same problem. They act at different moments in the life of a piece of sensitive data.

Microsoft Purview is Microsoft's data security and compliance suite. It classifies data with sensitivity labels, governs it across Microsoft 365 and Azure, detects risky behaviour, audits activity, and can enforce policy. Purview is strongest once data is stored or sent, and at enforcement inside the Microsoft estate.

BeeSensible is a browser extension for Chrome and Edge. While you type in a supported web app, it sends the text to a detection service inside the EU, the text is analysed in working memory and discarded, and the sensitive parts get a coloured highlight in the field. You decide what to do next: remove it, replace it with a realistic placeholder, or mask it. The extension never changes text on its own and never blocks sending.

Microsoft PurviewBeeSensible
Where it actsAcross Microsoft 365, Azure, endpoints, and browser (Edge first)In the browser field, while you type
Strongest momentAfter data is stored or sent, and at enforcementAt the moment of typing, before you send
Primary audienceIT, compliance, security teamsThe person writing the prompt or message
AI coverageCopilot, plus other AI sites via Edge or onboarded Windows devices20+ apps including ChatGPT, Claude, Gemini, Copilot, Perplexity, DeepSeek
BrowserEdge for Business inline; Chrome and Firefox via endpoint DLP on WindowsChrome and Edge, the same on both
Data at restClassifies and labels documents and emailNot in scope
Real-time feedback to the userBlock or warn dialogs where configuredColoured highlight in the field, user acts
DeploymentMulti-month enterprise rollout, device onboardingExtension install, no device onboarding

Each tool owns a moment the other does not.

What Microsoft Purview does, and does well

Purview is broad. It brings together data security, data governance, and compliance, with sensitivity labels and classifiers shared across them. (Microsoft Learn)

The parts that matter most for this discussion:

Information Protection. Sensitivity labels classify documents and email, can apply automatically based on content inspection, and can carry encryption and access restrictions with the file wherever it travels inside the estate.

Data Loss Prevention. DLP policies detect sensitive information across Exchange, SharePoint, OneDrive, Teams, endpoints, network, and the browser. Depending on configuration, DLP can warn, block, or report.

Insider Risk Management, Data Lifecycle Management, eDiscovery, Audit, Compliance Manager, and Communication Compliance. This is where Purview is genuinely strong. It can retain and dispose of data on a schedule, run legal discovery across mailboxes and sites, and produce a forensic audit trail. For AI specifically, Purview can log Copilot prompts and responses into the unified audit log, which is something a privacy-by-design awareness tool deliberately does not do.

Data Security Posture Management for AI. Microsoft's DSPM for AI gives central visibility over AI usage, covering Copilot, agents you build, and other AI apps. The newer unified DSPM experience is in preview at the time of writing. (Microsoft Learn: DSPM, Purview protections for Copilot and other AI apps)

If your organisation lives in Microsoft 365, has the licences, and needs governance, audit, and enforcement that hold up in front of a regulator, Purview is the right backbone.

Before or after? Purview can act at the front, with conditions

A common shorthand says Purview only works after the fact. That is not accurate. The difference lives in the detail.

In Microsoft Edge for Business, Purview can act inline. It can warn or block when someone pastes or types sensitive information into a generative AI site, directly in the browser. Microsoft's inline coverage for AI sites started with ChatGPT, Google Gemini, and DeepSeek, and expands over time. (Microsoft Learn: block sharing to AI apps via Edge)

So Purview can protect at the moment of typing. The question is under which conditions.

  • The inline AI scenario is built around Microsoft Edge for Business on Intune-managed Windows devices.
  • For Chrome and Firefox, Microsoft provides a browser extension, but it extends protection through endpoint DLP and requires devices to be onboarded to Purview. That path is scoped to Windows. (Microsoft Learn: Purview extension for Chrome)
  • Endpoint and Teams DLP sit in the E5 tier or the E5 Compliance add-on, above the basic DLP that comes with E3. (Microsoft Purview service description; practitioner breakdown of E3 vs E5 from 2toLead)

This is what enterprise enforcement looks like: managed devices, an onboarding process, and a licence tier that matches the capability. Front-of-the-line coverage therefore depends on browser, device management, and licence. Where those conditions are all met, Purview already does a lot at the moment of typing. Where one of them is not, a gap opens.

The three blind spots that remain

Given those conditions, three gaps tend to stay open in real organisations.

Consumer AI outside the conditions. ChatGPT or Claude in Chrome, on a device that is not onboarded to endpoint DLP, on a tenant without the E5 components. The data goes straight into the field and Purview's inline layer is not in the path.

Shadow AI on unmanaged devices. A personal laptop, a contractor's machine, a phone. Purview can only see what it is positioned to see. New AI tools also appear faster than any approved list is updated. (Why blocking drives Shadow AI)

The human moment. Even with perfect enforcement, the strongest lever is the person pausing before they paste. A block teaches avoidance. A warning that shows what is sensitive, in the field, teaches the habit. That awareness layer is not something a governance suite is designed to deliver.

A coverage map with channels down the left side, from Exchange and SharePoint to consumer AI in Chrome, and two columns showing where Microsoft Purview is strong and where BeeSensible adds cover

Find your own gap in three questions

Run these against your own setup, or put them to your Microsoft 365 admin.

  1. Which browser do people actually use for AI? Purview's inline protection lives in Edge for Business. If Chrome is common, that protection is not in the path.
  2. Are all devices Intune-onboarded, with Endpoint DLP on the E5 tier? The Chrome and Firefox path needs both. Without them, it does not run.
  3. Do people use AI on phones or personal laptops? Anything off the managed estate sits outside Purview's reach.

Every "yes, that is us" above is a place where the moment of typing falls outside Purview. That is exactly where a warning in the browser helps.

Where BeeSensible fits

BeeSensible does one thing and does it at one moment: it marks sensitive data while you type, in the browser, before you send.

At the moment of typing, across 20+ apps. The extension activates on a configured list of web apps: ChatGPT, Claude, Gemini, Microsoft Copilot, Perplexity, DeepSeek, and others, plus email like Outlook on the web and Gmail, chat like Slack and Teams, and some social platforms. Someone pasting a BSN into any of them sees a highlight in the field. No policy in the background, no report after the fact, a signal at the moment it matters.

The same in Chrome and Edge. It behaves identically in both browsers, with no device onboarding and no endpoint agent. This is the practical complement to Purview's Edge-first, Windows-scoped inline path.

Non-blocking by design. The person sees the highlight and chooses: remove, replace with a realistic placeholder, or mask. The extension never sends, changes, or blocks the message. The decision stays with the person, which is what builds the habit over time.

On-device or EU processing, no content storage. Through the desktop app, the detection engine runs entirely on the user's machine: no text leaves the device at all. For the browser extension without the desktop app, the text travels to the BeeSensible API hosted on Scaleway in France, detection runs on infrastructure at Hetzner in Germany, and the text is processed in working memory and discarded immediately. It is never written to disk, never stored, never used to train any model. All traffic is over TLS, and the hosting runs on ISO 27001 certified EU infrastructure. The detection result is labels and positions only.

A Shadow AI view, aggregated. The dashboard shows administrators which AI tools are in use and which categories of sensitive data appear in them. It shows counts and patterns, never the text and never an individual. No statistics appear for any group smaller than 10 active users, a threshold that is hardcoded and cannot be switched off. The point is to give policy a factual starting point, not to watch people.

Outlook
New message
Todr.smith@clinic.co.uk
SubjectClient file: Jane Richards
Dear colleague, please find the file for client Jane Richards (BSN: 384920173). She can be reached at 06-12345678. See the attachment for the full care plan.
BeeSensible highlights sensitive details before send.

The three-moments model

Put the life of a sensitive prompt on a timeline and the relationship is clear.

A timeline with three moments: before, the training and policy phase; during, the moment of typing in the browser; and after, detection, logging, and enforcement. Purview is marked strong across before-policy and after; BeeSensible sits on the during moment

Before is training and policy. Important, and the place where awareness starts, but knowledge fades on a busy day.

During is the moment of typing. This is the second the BSN goes into the field, and the last second anyone can still decide not to send it. BeeSensible lives here.

After is detection, logging, and enforcement. Classify it, audit it, retain it, discover it, act on it. This is Purview's home, and it is a strong home.

Most AI data exposure happens in the gap between knowing the policy and the moment of typing. Cover the "after" well and you still need someone, or something, at the "during".

Jurisdiction and data sovereignty

Microsoft is a US-headquartered company. Under the US CLOUD Act, US legal process can compel a provider subject to US jurisdiction to produce data in its possession, custody, or control, regardless of whether that data is stored inside or outside the United States. (Congressional Research Service explainer)

Microsoft has done substantial work here. In February 2025 it completed its EU Data Boundary, storing in-scope customer, personal, and support data within the EU and EFTA, while stating openly that in limited cases essential data may still be transferred outside the EU with safeguards. (Microsoft On the Issues)

The boundary is about where data is stored. Jurisdiction is a separate question. In June 2025, Microsoft France's director of public and legal affairs, asked by a French Senate inquiry whether he could guarantee that French citizens' data would never be handed to US authorities, answered that he could not give that guarantee, while adding that it had not happened. (The Register)

This is why European organisations are looking harder at data sovereignty. Gartner expects European sovereign cloud spending to rise sharply in 2026, and the European Commission has launched a Cloud Sovereignty Framework to score providers on legal jurisdiction and operational control. (Gartner forecast, reported)

BeeSensible keeps this narrow: detection runs inside the EU, the typed text is discarded after analysis, and no content is stored. Less data, and held closer, is a smaller surface under any jurisdiction.

Two scenarios

The end user

Lotte is a policy officer. She is drafting a decision letter and pastes the resident's name, BSN, and a paragraph of case context into ChatGPT in Chrome to tidy the language.

As she types, the BSN, the name, and the address get a coloured underline in the field. It reads like spell-check, except it is flagging privacy, not grammar. She masks the BSN, removes the address, keeps the structure of the letter, and sends the prompt. The model still understands the request because the shape of the text is intact. The sensitive parts never left in the clear.

Nothing blocked her. Nothing was filed against her name. She made a better decision in the two seconds she had to make it, and she is slightly more likely to catch it herself next time.

Four steps: type or paste, a live highlight appears in the field, remove or mask or replace the sensitive part, then send on purpose. The send step is never blocked.

The admin and the CISO

The security lead opens the BeeSensible dashboard. It shows which AI tools are generating exposure, the top categories of sensitive data appearing in them, and how that shifts week to week. Everything is aggregated. There are no individual prompts and no named users, and any group under 10 active users is not shown at all.

Detections over timeLast 30 days
12,438+18% vs last month
Top sources
ChatGPT
8,124
Gmail
3,210
Gemini
812
BeeSensible dashboard: aggregated detections and top sources, without monitoring individuals.

This sits next to Purview, it does not compete with it. Purview gives the forensic, attributable record inside the Microsoft estate: who did what, when, with which document, suitable for audit and enforcement. BeeSensible gives an aggregated read on where Shadow AI is actually happening across the browser, suitable for shaping policy and training. One is built to attribute, the other is built not to. A mature programme wants both kinds of insight, used for the purposes each is designed for.

What it costs: simple versus enterprise

So far this has been about coverage. But the question that lands in the meeting room is almost always the same: what does it cost, and how complicated is the licence? This is where the two models diverge most.

BeeSensible has one paid plan. Pro is €5 per user per month billed yearly (€60 per year), or €6 per user per month billed monthly. That includes everything: realtime detection, detection profiles, the analytics dashboard, and user management. No separate add-ons, no feature gated behind a higher tier, no onboarding programme you have to buy first. For individuals there is a free tier. And €5 is the ceiling, not the floor of an enterprise quote: you pick the number of licences at checkout and the per-user price scales automatically with the size of your organisation. It does not go up, it goes down as the team grows.

The Purview capabilities in this story live in the E5 tier. Purview's inline browser protection, endpoint DLP, and the Chrome extension belong to Microsoft 365 E5 or the E5 Compliance add-on, not to the basic DLP that comes with E3. For a sense of scale, in list prices: Microsoft 365 E3 sits around $36 per user per month, E5 around $57, and the E5 Compliance add-on around $12 per user per month on top of an E3 licence. Microsoft is raising these suite prices from July 2026. (EUR prices vary by market and exchange rate.) (EPC Group: E3 vs E5, E5 Compliance add-on, SHI, July 2026 price increase)

Microsoft Purview (E5 tier)BeeSensible Pro
Pricing modelPart of Microsoft 365 E5 or the E5 Compliance add-onOne plan, everything included
Order of magnitude± $57 per user/mo (E5), or ± $36 (E3) + ± $12 (E5 Compliance add-on)€5 per user/mo (yearly), €6 (monthly)
With more usersEnterprise agreementsPer-user price drops, down to €0.39
Add-onsEndpoint and Teams DLP in a higher tierNone, every feature is in Pro
DeploymentIntune onboarding, managed devicesInstall the extension
Free optionNoYes, for individuals

E5 delivers an enormous set of capabilities of which DLP is one, and most organisations buy that tier for dozens of reasons at once. The difference is structural: with Purview, the moment of typing in the browser sits behind an enterprise licence, an onboarding programme, and managed devices. With BeeSensible, it is one extension and one line on the invoice.

For the broad governance work inside the Microsoft estate, E5 earns its money and BeeSensible is no replacement. But for that one gap, the moment of typing in the browser, including Chrome and consumer AI, BeeSensible delivers that layer without an E5 dependency and at a fraction of the per-user cost. Simple and predictable, rather than complicated and enterprise.

When to use what, and why together

A hybrid stack diagram: Purview as the governance, classification, and enforcement backbone across the Microsoft estate, and BeeSensible as the awareness layer at the moment of typing across the browser, the two combining to cover both

Lean on Purview for classification and labelling, data at rest, retention and lifecycle, eDiscovery, audit, Copilot governance, and enforcement on managed Windows devices in Edge. This is its core and it is strong.

Add BeeSensible for the moment of typing across Chrome and Edge, consumer AI tools, the awareness habit, and an aggregated view of Shadow AI, without device onboarding or an E5 dependency.

Run both when you want governance and enforcement in the estate and a warning at the point where people actually paste sensitive text into AI tools. The two do not overlap. Purview answers "what was sent, how is it classified, and what do we do about it." BeeSensible answers "is the person about to send this aware of what is in the field, and can they fix it now."

Security teams that already run Purview tend to describe the awareness layer at the moment of typing as the piece that was still missing, rather than as a replacement for anything they have.

Conclusion

Back to the council. The dashboard was green and the policy officer was still pasting a BSN into ChatGPT. Both things were true at once, and neither tool alone closes the loop.

Purview governs, classifies, audits, and enforces, and it does that well across the Microsoft estate. BeeSensible marks sensitive data while you type, in the browser, in the 20+ apps where the prompt actually gets written, including the consumer AI tools and the moments where Purview enforcement is thinnest.

The strongest setup is not one or the other. It is governance after the fact and awareness at the moment of typing, doing the two jobs neither can do alone.

Sources


Want to see how BeeSensible sits next to your existing Microsoft setup? Book a 20-minute demo and we will walk through where the two layers meet.

FAQ

Common questions

We already have Microsoft Purview. Are we covered for AI?

Partly, and it depends on your setup. Purview governs and audits data across Microsoft 365 and can enforce policy. For sensitive text typed or pasted into AI sites, Purview can act inline in Microsoft Edge for Business, and through a browser extension on Windows devices that are onboarded to endpoint DLP, usually on the E5 tier. Outside those conditions, for example ChatGPT in Chrome on a device that is not onboarded, that inline layer is thinner. BeeSensible covers that moment of typing across Chrome and Edge without device onboarding or an E5 licence.

Does Purview work for ChatGPT, Claude, or Gemini outside Edge?

Microsoft's inline protection for generative AI sites is built into Microsoft Edge for Business and started with sites like ChatGPT, Gemini, and DeepSeek, expanding over time. For Chrome and Firefox, Microsoft offers a browser extension, but it depends on endpoint DLP and device onboarding and is scoped to Windows. So coverage exists, but it is conditional on browser, device management, and licence. BeeSensible behaves the same in Chrome and Edge and does not require device onboarding.

Is data held by Microsoft subject to the US CLOUD Act?

Microsoft is a US-headquartered company, so US legal process can in principle compel it to produce data in its control, regardless of where that data is stored. Microsoft has completed its EU Data Boundary and stores in-scope data in the EU, while acknowledging that limited transfers can still occur in specific cases. In June 2025, a Microsoft France executive told the French Senate he could not guarantee that French data would never be passed to US authorities. This is about jurisdiction under US law, not about where the bytes physically sit. BeeSensible processes detection inside the EU and stores no content.

Can BeeSensible run alongside Purview?

Yes, and that is the intended setup for organisations that already run Purview. Purview stays the governance, classification, and audit backbone inside the Microsoft estate. BeeSensible adds a warning at the moment of typing across the browser and consumer AI tools. They act at different moments and do not overlap.

Does BeeSensible log who ignores a warning?

No. The dashboard shows aggregated counts by category and app, never the text and never individual users. Statistics are not shown for any group smaller than 10 active users, and that threshold is hardcoded and cannot be turned off. This is a deliberate difference from Purview, which can attribute activity to a person for governance and audit. BeeSensible chooses aggregation by design.

What does BeeSensible cost compared to Purview?

BeeSensible Pro is €5 per user per month billed yearly (€60 per year) or €6 billed monthly, in a single plan with every feature included, plus a free tier for individuals. The per-user price drops in volume tiers as the team grows, from €5 for small teams down to €0.39 per user at 10,000 or more, and never goes up. With Purview, the browser and endpoint DLP described here sits in the E5 tier: for scale, Microsoft 365 E3 lists around $36 per user per month, E5 around $57, and the E5 Compliance add-on around $12 on top of E3, with a price increase from July 2026. E5 does far more than this one thing, so it is not a like-for-like comparison; but for the moment of typing in the browser specifically, BeeSensible delivers that layer without an E5 dependency and at a fraction of the per-user cost.

Does BeeSensible replace Microsoft Purview?

No. Purview does data governance, classification, eDiscovery, and enforcement that BeeSensible does not attempt. BeeSensible does not classify data at rest, does not run inside SharePoint or Exchange, and does not enforce. It marks sensitive data while you type in the browser so the person can act before sending. The point is complement, not replacement.

See how BeeSensible works

Detect sensitive data before it leaves your team, in any app, in real time.