Microsoft will give organizations an automated way to wipe the OneDrive and Exchange Online data of departed employees, eliminating a time-consuming manual chore that has long plagued IT and compliance teams. A new feature entering the Microsoft 365 roadmap on June 25, 2026 under ID 566527 targets precisely that pain point, with general availability slated for September 2026. The capability lives inside Microsoft Purview Data Lifecycle Management, the suite that already governs retention, labeling, and disposition of enterprise content.

The roadmap entry describes a mechanism to delete inactive OneDrive accounts—and, by extension, Exchange Online mailboxes—once an employee leaves the company. While the exact wording was truncated in the initial posting, the feature title and surrounding context make clear that it addresses a core offboarding gap: Even after an account is disabled or removed, terabytes of forgotten data can linger in unmanaged OneDrive sites and inactive mailboxes, consuming storage, violating retention policies, and exposing the organization to unnecessary risk.

What the feature actually does

At its heart, Roadmap ID 566527 brings native deletion triggers to Purview’s data lifecycle workflow. Today, admins must either manually delete departed users’ content, rely on PowerShell scripts that often break with Microsoft 365 updates, or purchase third‑party tools that add complexity and cost. The new feature, by contrast, will let compliance officers define a rule: “If an Entra ID user account is disabled or deleted and remains in that state for X days, permanently delete their OneDrive and mailbox content.”

Microsoft has not yet disclosed the exact configuration interface, but Purview’s existing policy architecture offers strong clues. Lifecycle management already supports adaptive policy scopes that can dynamically target users based on Azure AD attributes, group membership, or job title. The new deletion capability will likely extend that model with an operational trigger tied to user state changes. Combined with Purview’s review and disposition workflow, admins should be able to stage deletions for approval, apply legal holds as exceptions, and generate detailed audit logs.

The offboarding headache it solves

Manual cleanup of departed employees’ data is universally despised for good reason. An organization with 5,000 employees experiencing 15% annual turnover might see 750 departures per year. Each one can leave behind a OneDrive that averages 100 GB and a mailbox containing years of sensitive correspondence. Without automation, an IT specialist might spend 10–15 minutes per user—if nothing goes wrong. That’s nearly 190 hours of tedious, error‑prone work annually for a mid‑sized company.

The security implications are equally grim. Inactive mailboxes and OneDrive sites often remain accessible to co‑workers with delegated permissions, but without regular review, former employees’ access grants persist. Worse, abandoned content can contain credentials, customer data, or proprietary information that, if compromised during a breach, triggers regulatory fines under GDPR, HIPAA, or other frameworks.

“I’ve seen environments where the ‘Departed Staff’ OneDrive folders are still shared with the whole department two years after the person left,” said one senior compliance manager who asked not to be named because they were not authorized to speak about internal tools. “It’s a ticking time bomb, and manually chasing down each account is simply not sustainable.”

How it will work under the hood

Despite the early stage of the announcement, Microsoft has shared enough about Purview’s trajectory to sketch a plausible technical picture. The feature will almost certainly integrate with Entra ID’s user provisioning events. When an identity is disabled—either by an HR system feeding Workday or SAP data into Azure AD, or manually by an admin—Purview’s lifecycle engine can start a timer. After the configured delay, it will flag the associated OneDrive and mailbox for permanent deletion.

Critically, the system must respect Purview’s existing safeguards. Any Microsoft 365 item that is subject to a retention policy, eDiscovery hold, or legal hold would be excluded from automatic deletion. In fact, the Purview team has consistently highlighted that disposition reviews and approval workflows are mandatory for any auto‑deletion scenario that might conflict with business or legal requirements. So, if a departed user’s mailbox is on hold for an ongoing litigation, the deletion service would skip it and log the exception.

Administrators will likely need one of the higher‑tier Microsoft 365 plans to use this capability. Purview Data Lifecycle Management is included in Office 365 E5 and Microsoft 365 E5, but certain advanced features—such as adaptive policy scopes and the disposition review workflow—require the premium license. Microsoft has not yet specified whether the departing‑employee deletion triggers will fall under the base Purview license or demand an E5 compliance add‑on. Given the pattern with other high‑value Purview features, the Safe bet is that it will be sold as a premium compliance extra, possibly bundled with the Microsoft 365 E5 Compliance suite.

Beyond OneDrive and mailboxes

The roadmap ID specifically mentions OneDrive, and the feature title references “mailboxes and OneDrive cleanup.” However, Microsoft’s broader offboarding vision—already visible in Azure Lifecycle Workflows—suggests the company is building toward a unified offboarding engine. Azure Lifecycle Workflows (now generally available) can run custom tasks when a user leaves, such as removing group memberships and generating a temporary access pass. The new Purview addition fills the data‑deletion gap, but it naturally raises the question: will SharePoint, Teams, and Viva Engage data follow?

Teams chats and channel messages are stored in Exchange Online folders or Azure Cosmos DB, so mailbox deletion would already sweep some of that content. But Teams meeting recordings stored in OneDrive or SharePoint, Planner tasks, and Loop components are increasingly the trove of day‑to‑day work. A truly automated offboarding would need to handle these containers as well. For now, the roadmap entry implies a first step, but compliance officers will be watching for expansions in future waves.

A competitive lens and the compliance driver

Vendors like AvePoint, ShareGate, and CoreView have long offered automated offboarding solutions that delete content, reassign permissions, and export data. Microsoft’s entry into this space with a native Purview feature puts pressure on those third parties while giving customers a first‑party option that integrates natively with Microsoft’s compliance stack. The advantage is clear: Purview already owns the retention and labeling logic, so it has the authoritative view over what can and cannot be deleted.

Regulatory pressure is also accelerating this move. Data minimization is a core principle of GDPR, CCPA, and other privacy laws. Keeping departed employees’ information longer than necessary can be a violation in itself, even if no breach occurs. By providing a simple, auditable way to enforce deletion after a job‑based retention period, Microsoft gives organizations a defensible posture during regulatory audits.

What to expect between now and September 2026

Microsoft’s typical roadmap cycle for these features involves a private preview, often first for Targeted Release customers, then a public preview before GA. If this feature follows the pattern of recent Purview additions (such as the ability to apply retention labels to meetings), we might see private preview in July or August 2026, with a swift move to GA by the end of September. The tight timeline suggests the underlying plumbing may already be in place and the remaining work is around the policy creation experience.

IT administrators would be wise to start planning now. Even though September 2026 seems distant, getting the prerequisites right will take time. Key preparatory steps include:

  • Ensuring all employees are provisioned in Entra ID and that disablement events are flowing correctly from the HR system.
  • Auditing existing OneDrive and mailbox content to identify what is already subject to legal or retention holds that might conflict with automatic deletion.
  • Reviewing license coverage to confirm that the necessary Purview capabilities are available to the compliance team.
  • Designing a phased rollout—perhaps starting with non‑critical departments—to validate the deletion logic before scaling to the entire organization.

Once the feature lands, it should dramatically reduce the offboarding tail that every Microsoft 365 tenant accumulates. No more forgotten OneDrive sites, no more orphaned mailboxes, and no more frantic script edits after each service update. Instead, a policy‑driven, compliant, and fully auditable cleanup will run in the background, turning a manual nightmare into a set‑and‑forget process.

The bigger picture: autonomous data governance

Roadmap ID 566527 is a small but telling piece of Microsoft’s grander ambition for autonomous data governance. The company has been layering machine learning into Purview to auto‑classify content, recommend retention labels, and now trigger deletions based on user lifecycle events. Each step reduces the cognitive load on compliance teams and moves enterprises closer to the ideal of self‑governing data—content that automatically classifies, retains, and disposes of itself according to business rules, with minimal human intervention.

For Windows‑centric organizations that already run their estates on Microsoft 365, this forthcoming feature is a compelling reason to double down on the Purview ecosystem. It ties identity management, compliance, and storage optimization into one coherent workflow, closing a gap that has annoyed admins for years. When September 2026 arrives, the delete button for departed employees’ digital footprint may finally push itself.