We’re updating how Abnormal handles data for Misdirected Email Prevention (MEP) to strengthen privacy controls while improving detection quality and long-term insights.
What’s Changing:
For MEP detections, Abnormal will no longer store email body content in the platform. Instead, authorized users will see content fetched just-in time from Microsoft Graph when viewing a detection in the portal.
Retention for misdirected email metadata and related detection signals is being extended to 180 days, aligned with our Inbound Email Security data policies.
New audit log events capture when users view the outbound log and when they open specific misdirected email detections, improving traceability for security and compliance teams.
Why This Matters:
Reduced persistent storage of sensitive email content, strengthening Abnormal’s privacy‑first posture while still honoring customer access expectations.
Provides a longer, richer signal history to train and evaluate detection models more effectively.
Enable better trend analysis and compliance reporting, especially for EU and other privacy‑sensitive environments, improving customer trust in how misdirected email data is handled.