Bypassing the ‘No-Go’ Using OneDrive’s Copilot for Encrypted & External Document Analysis

In today’s fast-moving enterprise environment, being able to surface insights from documents quickly is a competitive advantage. Tools like Copilot in OneDrive (part of the Microsoft 365 Copilot ecosystem) are designed to make that possible. But what happens when the documents are encrypted, or shared from outside your organisation? Often, that’s treated as a “no-go” zone for AI summarisation.

This blog explores how you can bypass the “no-go” — with the right permissions and controls — to enable Copilot to summarise encrypted files and externally-shared files (provided you have permission). We’ll dig into how it works, how to enable it safely, what the limitations are, and the advanced use-cases where this becomes truly powerful.

How Copilot in OneDrive Works (Quick Recap)

Copilot in OneDrive allows you to ask questions about files stored in your OneDrive or files shared with you — without opening each file manually. It can summarise files such as Word, PDF, and PowerPoint, generate comparisons between documents, and create quick overviews or lists. Importantly, Copilot always honours access permissions; it can only process content that you have rights to view.

Unlocking Encrypted Document Analysis

What’s supported

When a file is encrypted using Microsoft Purview sensitivity labels or Rights Management, Copilot can still access and summarise it — if the user has the required VIEW and EXTRACT usage rights. Files stored in SharePoint or OneDrive are encrypted at rest using enterprise-grade encryption standards, so data protection is maintained.

What’s constrained

If a sensitivity label grants only VIEW rights (without EXTRACT), Copilot cannot read or summarise the content. Some files with advanced encryption models, such as Double Key Encryption, are completely inaccessible to Copilot. The file must also be in a supported format (Word, PDF, PowerPoint, etc.) and within defined size limits.

Practical steps

Use sensitivity labels that include EXTRACT rights for authorised users.
Ensure the file is shared and stored in OneDrive or SharePoint, and the user has full viewing access.
Select the file in OneDrive Web, open Copilot, and choose “Summarise this file.”
For encrypted files, verify that IRM policies do not block Copilot’s summarisation feature.

Why this matters

Encrypted documents often contain the most valuable content — legal agreements, compliance data, strategic reports. By allowing summarisation under controlled conditions, organisations can maintain governance while unlocking productivity gains.

Working with Externally Shared Documents

What works

If a document has been shared with you from outside your organisation — and you have the right permissions — Copilot can summarise it. It recognises files that you have access to via OneDrive or SharePoint and can summarise multiple files at once.

What to check

The document must be shared properly using specific-people or guest access permissions.
Encryption and protection rules applied by the sender’s organisation may restrict Copilot access.
The file must be a supported format and size.
For external sharing, use “specific people” links to ensure clarity on who can view and summarise.

Example scenario

Imagine a partner organisation shares a large market-research PDF with you. With the right permissions, you can open it in OneDrive Web, select Copilot, and request a summary or analysis of key findings. You can even compare that report to your internal strategy document — identifying overlaps, contradictions, or gaps.

Advanced Use-Cases & Best Practices

1. Cross-document summarisation across internal + external + encrypted files

You can select multiple documents — internal, external, or encrypted — and ask Copilot to analyse them together.
Example prompt:

“Summarise the core obligations in the contract, highlight where our internal deck diverges from the partner’s research, and list any gaps we should address.”

2. Governed external sharing and summarisation audit trail

Use Microsoft Purview auditing to track who summarised what, when, and from which location. Maintain logs of sharing permissions, label configurations, and summarisation actions.

3. Sharing summaries safely

Summaries can be distributed internally without sharing the original document. Ensure summaries are appropriately labelled or redacted to prevent exposure of sensitive content.

4. Folder- or project-level summarisation workflows

Group all related project files — internal, external, encrypted — in a single OneDrive folder. Periodically summarise new additions using Copilot for project updates or stakeholder briefings.

Security & Governance Considerations

Configure sensitivity labels to grant EXTRACT rights where necessary.
Review external sharing policies regularly to maintain compliance.
Enable auditing to monitor Copilot usage and summarisation activity.
Educate users about rights management — Copilot respects access rules, but summarisation is possible if rights are granted.
Avoid overly broad sharing permissions such as “Everyone except external users.”
Ensure AI-driven summaries are reviewed for compliance before distribution.

By understanding how Copilot in OneDrive respects encryption and sharing permissions, you can safely extend summarisation to previously restricted “no-go” documents. This approach balances productivity and compliance, allowing you to derive insight from both internal and external content.

To get started:

Review your sensitivity labels and ensure EXTRACT rights are configured.
Audit external sharing policies.
Test Copilot summarisation with mixed document sets.
Incorporate summarisation into regular workflows like reviews or updates.

When configured thoughtfully, OneDrive’s Copilot transforms from a simple storage assistant into a secure, insight-driven productivity engine.

Bypassing the ‘No-Go’ Using OneDrive’s Copilot for Encrypted & External Document Analysis

How Copilot in OneDrive Works (Quick Recap)