Back

How to Create a Custom Office 365 Retention Policy

An Office 365 retention policy helps you manage the email lifecycle and minimize potential legal risks by establishing a maximum timeframe emails are kept. Microsoft routinely updates the default policies for messaging records management. For instance, deleted emails in Off...

2 min read
Published on May 2, 2017
How to Create a Custom Office 365 Retention Policy

An Office 365 retention policy helps you manage the email lifecycle and minimize potentialĀ legal risks by establishing aĀ maximum timeframe emails are kept. Microsoft routinely updates theĀ default policies for messaging records management (MRM). For instance, deleted emails in Office 365 were once only recoverable up to 30 days. Microsoft updated its retention policyĀ so all emails are now recoverable, regardless whether users delete them.

However, to betterĀ manage emails and stay industry-compliant, you should configure your own custom retention policy in Office 365.

Setting Up an Office 365 Retention Policy

Before getting started, itā€™s important to note that a mailbox can only have one retention policy assigned to it, and users can still delete emails, even with an Office 365 retention policy in place.

To apply a retention policy to a mailbox, youā€™ll need to use retention tags. These settings outline the period aĀ message should remainĀ in a mailbox and what happens once that timeframe has passed.

Hereā€™s how to create a custom Office 365 retention policy and assign retention tags:

  1. Browse to Office 365 Admin > Exchange admin center > compliance management > retention policies. create Office 365 retention policy

  2. Select Default MRM Policy, click the edit icon and then change the name of the policy.

Note: Microsoft periodically updates the default policy titled ā€œDefault MRM Policy.ā€ By changing the name of the policy, you will be exempt from Microsoft-initiated changes to mail retention.

  1. Next browse to Office 365 Admin > Exchange admin center > compliance management > retention tags.

  2. Create retention tags by clicking the button and selecting the desired scope. Customer Retetention Policy Ā  Ā  Ā  Ā  Ā 

  3. After creating desired retention policies, browse back to Office 365 Admin > Exchange admin center > compliance management > retention policies and click the icon.

  4. Specify a name for the new retention policy, choose your newly created tags and click save. naming retention policy Exchange

Have more questions about creating Office 365 retention policies? Let us know your questions in the comments below. For more help managing your Office 365 environment, check out ourĀ Office 365 consulting services here, or request a quote:

This post has matured and its content may no longer be relevant beyond historical reference. To see the most current information on a given topic, click on the associated category or tag.

Related Posts

Microsoft Licensing and CMMC - How Does It Work?

CMMC + Microsoft 365 = šŸ˜µā€šŸ’«? Maggie has thoughts for you

Not sure which Microsoft 365 licenses you need for CMMC? Agile IT's Chief Operating Officer, Maggie McGrath, has some thoughts for you.

Jul 7, 2025
9 min read
How Does CMMC Compliance Align with NIST SP 800-171?

How Does CMMC Compliance Align with NIST SP 800-171?

Learn how CMMC compliance aligns with NIST SP 800-171. Understand the security controls, certification requirements, and how both frameworks help protect Controlled Unclassified Information (CUI).

Jul 4, 2025
11 min read
CMMC Level 1 - What It Means for Over 139,000 Defense Contractors

CMMC Level 1: What It Means for Over 139,000 Defense Contractors

Over 139,000 DoD contractors must meet CMMC Level 1. Learn what it requires, how to self-assess, and why it's essential for handling Federal Contract Information.

Jul 3, 2025
4 min read
CMMC Compliance ā€” Understanding the Requirements and Why It's Important

CMMC Compliance ā€” Understanding the Requirements and Why It's Important

CMMC compliance is crucial for protecting Controlled Unclassified Information (CUI) in defense contracts. Learn what CMMC is, its certification levels, and why it matters.

Jul 2, 2025
9 min read
CMMC Certification vs. Self-Assessment What You Need to Know

CMMC Certification and Self-Assessment: What Contractors Need to Know

Not all contractors need a third-party CMMC certification. Find out the differences between CMMC certification and self-assessment and which one applies to your organization.

Jul 1, 2025
7 min read
How Much Does It Cost to Achieve CMMC Compliance?

How Much Does It Cost to Achieve CMMC Compliance and Prepare for Certification?

CMMC compliance costs vary by level and organization size. Get a breakdown of certification expenses, hidden costs, and funding options for meeting CMMC requirements.

Jun 30, 2025
7 min read

Ready to Secure and Defend Your Data
So Your Business Can Thrive?

Fill out the form to see how we can protect your data and help your business grow.

Loading...
Secure. Defend. Thrive.

Let's start a conversation

Discover more about Agile IT's range of services by reaching out.

Don't want to wait for us to get back to you?

Schedule a Free Consultation

Location

Agile IT Headquarters
4660 La Jolla Village Drive #100
San Diego, CA 92122

Secure. Defend. Thrive.

Don't want to wait for us to get back to you?

Discover more about Agile IT's range of services by reaching out

Schedule a Free Consultation