The requirement states that all Microsoft 365 data for users must be retained for at least one year. In Microsoft 365, retention policies must be configured for each type of data storage.
Step 1: Identifying Where Data is Stored
From the case study, users store data in the following locations:
â— SharePoint Online sites
â— OneDrive accounts
â— Exchange email
â— Exchange public folders
â— Teams chats
â— Teams channel messages
Since these locations fall under two broad categories:
â— Microsoft Exchange data (Emails, Public folders)
â— SharePoint, OneDrive, and Teams data
Step 2: Required Retention Policies
1ï¸. A single retention policy can cover:
â— SharePoint Online
â— OneDrive
â— Microsoft Teams
2. A second retention policy is required for:
â— Exchange (Emails & Public Folders)
Thus, the minimum number of retention policies required to meet the requirement is 2.
Microsoft 365 retention policies can be applied broadly across multiple services with just two policies:
â— One for Exchange & Public Folders
â— One for SharePoint, OneDrive, and Teams
There's no need for separate policies for each individual workload unless different retention durations are required, which is not stated in the requirement.
