2.5. Reflection Checkpoint

Key Takeaways

Before proceeding, ensure you can:

• Explain how Copilot protects organizational data (tenant boundary, permission inheritance, no training on your data)
• Distinguish file grounding, web grounding, and app-specific context — and when each applies
• Articulate the difference between a chat experience and an agent experience with a concrete example
• Match at least three M365 apps to their signature Copilot capability

Connecting Forward

Phase 3 covers responsible AI and data protection — the "risk and limits" side of Copilot that complements the "capabilities" covered in Phase 2. Understanding what Copilot can do well (Phase 2) and where it can go wrong (Phase 3) together give you the complete picture the exam tests.

Self-Check Questions

1. A colleague stores a sensitive contract in a SharePoint site that you don't have access to. If you ask Copilot "Find any contracts related to Vendor X," will Copilot surface that contract? Explain why or why not.
2. Your organization wants to deploy an AI assistant that answers employee benefits questions using only your official HR documentation — and always responds in a consistent, professional tone. Should you use Copilot Chat or create a Copilot agent? What specific agent settings would you configure?