Create and configure retention policies

Microsoft 365 licensing guidance for security & compliance.

Use a retention policy to manage the data for your organization by deciding proactively whether to retain content, delete content, or retain and then delete the content.

A retention policy lets you do this very efficiently by assigning the same retention settings at the container level to be automatically inherited by content in that container. For example, all items in SharePoint sites, all email messages in users' Exchange mailboxes, all channel messages for teams that are used with Microsoft Teams. If you're not sure whether to use a retention policy at the container level or a retention label at the item level, see Retention policies and retention labels.

For more information about retention policies and how retention works in Microsoft 365, see Learn about retention policies and retention labels.

Note

The information on this page is for compliance administrators. If you are not an administrator and want to understand how retention policies have been configured for the apps that you use, contact your help desk, IT department, or administrator. If you're seeing messages about retention policies in Teams chats and channel messages, you might find it helpful to review Teams messages about retention policies.

Tip

If you're not an E5 customer, use the 90-day Microsoft Purview solutions trial to explore how additional Purview capabilities can help your organization manage data security and compliance needs. Start now at the Microsoft Purview compliance portal trials hub. Learn details about signing up and trial terms.

Before you begin

The global admin for your organization has full permissions to create and edit retention policies. If you aren't signing in as a global admin, see the permissions information for data lifecycle management.

Decide before you create your retention policy whether it will be adaptive or static. For more information, see Adaptive or static policy scopes for retention. If you decide to use an adaptive policy, you must create one or more adaptive scopes before you create your retention policy, and then select them during the create retention policy process. For instructions, see Configuration information for adaptive scopes.

Create and configure a retention policy

Although a retention policy can support multiple services that are identified as "locations" in the retention policy, you can't create a single retention policy that includes all the supported locations:

  • Exchange mailboxes
  • SharePoint sites or SharePoint classic and communication sites
  • OneDrive accounts
  • Microsoft 365 Group mailboxes & sites
  • Skype for Business
  • Exchange public folders
  • Teams channel messages
  • Teams chats and Copilot interactions
  • Teams private channel messages
  • Viva Engage community messages
  • Viva Engage user messages

If you select the Teams or Viva Engage locations when you create a retention policy, the other locations are automatically excluded. This means that the instructions to follow depend on whether you need to include the Teams or Viva Engage locations.

Note

When you use adaptive policies instead of static policies, you can configure a single retention policy to include both Teams and Viva Engage locations. This isn't the case for static policies where Teams and Viva Engage locations require their own retention policy.

When you've more than one retention policy, and when you also use retention labels, see The principles of retention, or what takes precedence? to understand the outcome when multiple retention settings apply to the same content.

Select the tab for instructions to create a retention policy for Teams and Copilot for Microsoft 365, Viva Engage, or the other supported services (Exchange, SharePoint, OneDrive, Microsoft 365 Groups, Skype for Business):

Note

Use the location for Teams chats and Copilot interactions when you want to automatically retain or delete chat data with Microsoft Copilot for Microsoft 365. Users don't need to be using Teams to retain and delete this data. For more information. see Microsoft Purview supports compliance management for Copilot and Learn about retention for Copilot for Microsoft 365.

Retention policies for Teams support shared channels. When you configure retention settings for the Teams channel message location, if a team has any shared channels, they inherit retention settings from their parent team.

Retention policies also support newly created call data records, which are system-generated messages that contain metadata for meetings and calls. All call data records are always included with the Teams chats and Copilot interactions location, even call data records for Teams channel messages and Teams private channel messages.

  1. From the Microsoft Purview compliance portal, select Data lifecycle management > Microsoft 365 > Retention Policies.

  2. Select New retention policy to start the Create retention policy configuration, and name your new retention policy.

  3. For the Assign admin units page: If your organization is using administrative units in Microsoft Entra ID, the retention policy can be automatically restricted to specific users by selecting administrative units. If your account has been assigned administrative units, you must select one or more administrative units.

    If you don't want to restrict the policy by using administrative units, or your organization hasn't configured administrative units, keep the default of Full directory.

  4. For the Choose the type of retention policy to create page, select Adaptive or Static, depending on the choice you made from the Before you begin instructions. If you haven't already created adaptive scopes, you can select Adaptive but because there won't be any adaptive scopes to select, you won't be able to finish the configuration with this option.

  5. Depending on your selected scope:

    • If you chose Adaptive: On the Choose adaptive policy scopes and locations page, select Add scopes and select one or more adaptive scopes that have been created. Then, select one or more locations. The locations that you can select depend on the scope types added. For example, if you only added a scope type of User, you'll be able to select Teams chats but not Teams channel messages.

    • If you chose Static: On the Choose locations to apply the policy page, select one or more locations for Teams:

      • Teams channel message: Messages from standard and shared channel chats, and standard and shared channel meetings, but not from private channels that have their own policy location.
      • Teams chats and Copilot interactions: For Teams, messages from private 1:1 chats, group chats, meeting chats, and chat with yourself. For Copilot for Microsoft 365, all user prompts to Copilot and all Copilot responses.
      • Teams private channel messages: Messages from private channel chats and private channel meetings. If you select this option, you can't select the other Teams locations in the same retention policy.

      By default, all teams and all users are selected, but you can refine this by selecting the Choose and Exclude options.

  6. For Decide if you want to retain content, delete it, or both page, specify the configuration options for retaining and deleting content.

    You can create a retention policy that just retains content without deleting, retains and then deletes after a specified period of time, or just deletes content after a specified period of time. For more information, see Settings for retaining and deleting content.

  7. Complete the configuration and save your settings.

For guidance when to use retention policies for Teams and understand the end user experience, see Manage retention policies for Microsoft Teams from the Teams documentation.

For technical details about how retention works for Teams and Copilot data, including what elements of messages are supported for retention and timing information with example walkthroughs, see Learn about retention for Microsoft Teams and Learn about retention for Copilot for Microsoft 365.

Known configuration issues for Teams retention policies

  • Although you can select the option to start the retention period when items were last modified, the value of When items were created is always used. For messages that are edited, a copy of the original message is saved with its original timestamp to identify when this pre-edited message was created, and the post-edited message has a newer timestamp.

  • When you select Edit for the Teams chats location, you might see guests and non-mailbox users. Retention policies aren't designed for these users, so don't select them.

  • To include newly created call data records for Teams channel messages and Teams private channel messages, you must select the Teams chats location, instead of the Teams channel messages and Teams private channel messages locations.

Additional retention policy needed to support Teams

Teams is more than just chats and channel messages. If you have teams that were created from a Microsoft 365 group (formerly Office 365 group), you should additionally configure a retention policy that includes that Microsoft 365 group by using the Microsoft 365 Group mailboxes & sites location. This retention policy applies to content in the group's mailbox, site, and files. Files include Teams meeting recordings and transcripts from channel meetings.

To retain or delete Teams meeting recordings with their transcripts from user chats, you'll need a retention policy that includes the organizer's OneDrive account as the location.

If you have team sites that aren't connected to a Microsoft 365 group, which includes sites for Teams shared channels and Teams private channels, you need a retention policy that includes the SharePoint classic and communication sites or OneDrive accounts locations to retain and delete files in Teams:

  • Files that are shared in chat are stored in the OneDrive account of the user who shared the file.

  • Files that are uploaded to channels are stored in the SharePoint site for the team.

Tip

You can apply a retention policy to the files of just a specific team when it's not connected to a Microsoft 365 group by selecting the SharePoint site for the team, and the OneDrive accounts of users in the Team.

It's possible that a retention policy that's applied to Microsoft 365 groups, SharePoint sites, or OneDrive accounts could delete a file that's referenced in a Teams chat or channel message before those messages get deleted. In this scenario, the file still displays in the Teams message, but when users select the file, they get a "File not found" error. This behavior isn't specific to retention policies and could also happen if a user manually deletes a file from SharePoint or OneDrive.

How long it takes for retention policies to take effect

When you create and submit a retention policy, it can take up to seven days for the retention policy to be applied:

Diagram of when retention policy take effect.

First, the retention policy needs to be distributed to the locations that you selected, and then applied to content. You can always check the distribution status of the retention policy by selecting it from the Retention policies page in the Microsoft Purview compliance portal. From the flyout pane, if you see (Error) included in the status, and in the details for the locations see a message that it's taking longer than expected to deploy the policy or to try redeploying the policy, try running the Set-AppRetentionCompliancePolicy or Set-RetentionCompliancePolicy PowerShell command to retry the policy distribution:

  1. Connect to Security & Compliance PowerShell.

  2. Run one of the following commands:

    • For the policy locations Teams private channel messages, Viva Engage user messages and Viva Engage community messages:

      Set-AppRetentionCompliancePolicy -Identity <policy name> -RetryDistribution
      
    • For all other policy locations, such as Exchange mailboxes, SharePoint classic and communication sites, and Teams channel messages:

      Set-RetentionCompliancePolicy -Identity <policy name> -RetryDistribution
      

Updating retention policies

When settings from the retention policy are already applied to content, a change in configuration to the policy will be automatically applied to this content in addition to content that's newly identified.

Some settings can't be changed after the policy is created and saved, which include the name of the retention policy, the scope type (adaptive or static), and the retention settings except the retention period.

If you no longer need the retention settings that you've configured, see Releasing a policy for retention.

Troubleshooting retention policies

If your retention policies aren't working as expected or you see errors related to your retention policies, use the following troubleshooting resources:

Next steps

If some items for Exchange, SharePoint, OneDrive, or Microsoft 365 Groups need different retention settings from the retention policy settings you've configured, create retention labels for these exceptions.

However, if you're looking to manage high-value items for business, legal, or regulatory record-keeping requirements, use file plan to create and manage retention labels.