Premium eDiscovery

Premium eDiscovery (previously referred to as Advanced eDiscovery) builds on top of the Standard eDiscovery features. Premium eDiscovery also includes advanced features such as near-duplicate content removal to remove responsive (matching) items that have duplicated data, privilege management (to identify content protected by attorney privilege), redaction (marking out confidential pieces of data), and optical character recognition (OCR) to detect text in images.

While Premium eDiscovery supports the concept of searches, they are renamed collections in the interface. Collections function the same way using content queries and locations. Collections are based on the concept of custodians or individual users associated with a data storage location (for example, the Exchange Online mailbox for the user would be a custodial data source since it’s directly attributable to the user). You can also add non-custodial data locations to a collection. A non-custodial location might be a data source such as an Exchange public folder or a SharePoint site.

Review sets are used to group, tag, and comment on discovered content from collections in eDiscovery Premium cases. Additionally, you can import non-Office 365 data into review sets. Review sets can be used to take advantage of an eDiscovery machine learning technology called predictive coding that helps remove non-responsive content based on the result of human training.

Premium eDiscovery cases also include hold functionality like the Standard eDiscovery product.

After content has been identified, it can be produced through an export process, just like the Standard eDiscovery product.

Summary

In this chapter, you have learned about several compelling compliance and security features available with Microsoft 365, including the Service Trust Portal, Compliance Manager, and eDiscovery.

As part of the compliance solutions offering, you learned how Compliance Manager can help organizations achieve and maintain compliance with industry-based standards and regulatory controls. The Microsoft Purview compliance solutions also include information protection and data lifecycle management tools such as retention policies and DLP policies, as well as tools for identifying and managing risky behaviors. IRM has features that can be used to help mitigate and manage a variety of risk scenarios, such as data loss from terminated employees or exposure from internal communications. eDiscovery and audit capabilities complete the compliance solution portfolio.

The trust component of Microsoft 365 is focused on the features of the Service Trust Portal. The Service Trust Portal provides documentation and reports detailing how Microsoft is achieving compliance with international standards and regulatory requirements. Some of the most common questions organizations have when assessing a cloud service are how data is secured, where data is stored, and what data resiliency protection is in place—all of which can be answered using the trust resources provided by Microsoft.

Lastly, the Microsoft Purview solutions catalog includes the Priva family of products. Priva combines policies and sensitive information types to detect risky data conditions in the organization as well as to fulfill subject rights requests by data owners.

In the next chapter, you’ll begin reviewing licensing options, including which cloud services may be available on licensing styles or agreements.