Back

How to Create a Custom Office 365 Retention Policy

An Office 365 retention policy helps you manage the email lifecycle and minimize potential legal risks by establishing a maximum timeframe emails are kept. Microsoft routinely updates the default policies for messaging records management. For instance, deleted emails in Off...

2 min read
Published on May 2, 2017
How to Create a Custom Office 365 Retention Policy

An Office 365 retention policy helps you manage the email lifecycle and minimize potential legal risks by establishing a maximum timeframe emails are kept. Microsoft routinely updates the default policies for messaging records management (MRM). For instance, deleted emails in Office 365 were once only recoverable up to 30 days. Microsoft updated its retention policy so all emails are now recoverable, regardless whether users delete them.

However, to better manage emails and stay industry-compliant, you should configure your own custom retention policy in Office 365.

Setting Up an Office 365 Retention Policy

Before getting started, it’s important to note that a mailbox can only have one retention policy assigned to it, and users can still delete emails, even with an Office 365 retention policy in place.

To apply a retention policy to a mailbox, you’ll need to use retention tags. These settings outline the period a message should remain in a mailbox and what happens once that timeframe has passed.

Here’s how to create a custom Office 365 retention policy and assign retention tags:

  1. Browse to Office 365 Admin > Exchange admin center > compliance management > retention policies. create Office 365 retention policy

  2. Select Default MRM Policy, click the edit icon and then change the name of the policy.

Note: Microsoft periodically updates the default policy titled “Default MRM Policy.” By changing the name of the policy, you will be exempt from Microsoft-initiated changes to mail retention.

  1. Next browse to Office 365 Admin > Exchange admin center > compliance management > retention tags.

  2. Create retention tags by clicking the button and selecting the desired scope. Customer Retetention Policy          

  3. After creating desired retention policies, browse back to Office 365 Admin > Exchange admin center > compliance management > retention policies and click the icon.

  4. Specify a name for the new retention policy, choose your newly created tags and click save. naming retention policy Exchange

Have more questions about creating Office 365 retention policies? Let us know your questions in the comments below. For more help managing your Office 365 environment, check out our Office 365 consulting services here, or request a quote:

This post has matured and its content may no longer be relevant beyond historical reference. To see the most current information on a given topic, click on the associated category or tag.

Related Posts

Key Features and Benefits of Azure Backup

Overview of Azure Backup: Features and Benefits

Explore the core features and advantages of Azure Backup, including built-in security, scalability, and compliance for cloud-based data protection.

Oct 6, 2025
6 min read
NIST 800-53 vs. NIST 800-171: Key Differences and Why They Matter

NIST 800-53 vs. NIST 800-171: What’s the Difference?

Understand the key differences and importance of NIST 800-53 and NIST 800-171, how they apply to agencies and contractors, and which framework your organization needs for compliance.

Oct 6, 2025
5 min read
Tenant-to-Tenant Migration for CMMC Compliance

How to Perform a Tenant-to-Tenant Migration for CMMC Compliance

Planning a tenant-to-tenant migration for CMMC compliance? Learn best practices, tool options, and common pitfalls when moving data between tenants under CMMC.

Oct 6, 2025
7 min read
Critical Data Backup in Azure | Identify & Protect What Matters

Identifying Critical Data and Applications for Backup in Azure

Learn how to identify and prioritize your critical data and applications for backup in Azure to reduce risk, ensure business continuity, and meet compliance requirements.

Oct 3, 2025
5 min read
Microsoft 365 Backup Compliance | Key Risks & Best Practices

Compliance Considerations When Backing Up Microsoft 365 Data

Ensure your Microsoft 365 backups meet compliance requirements for CMMC, NIST 800-171, and other regulations. Learn key considerations to avoid violations.

Oct 3, 2025
6 min read
Azure Backup Needs Assessment | Plan Your Cloud Data Protection

Assessing Your Organization's Backup Needs for Azure Workloads

Learn how to assess your backup needs for Azure workloads, from compliance and recovery objectives to choosing the right tools for data protection and resilience.

Sep 26, 2025
6 min read

Ready to Secure and Defend Your Data
So Your Business Can Thrive?

Fill out the form to see how we can protect your data and help your business grow.

Loading...
Secure. Defend. Thrive.

Let's start a conversation

Discover more about Agile IT's range of services by reaching out.

Don’t want to wait for us to get back to you?

Schedule a Free Consultation

Location

Agile IT Headquarters
4660 La Jolla Village Drive #100
San Diego, CA 92122