updates to concept guide

Author: inward-eye

articles/purview/concept-policies-devops.md

@@ -48,7 +48,7 @@ Bob and Alice are involved with the DevOps process at their company. Given their
 - Mateo doesn't have to create local logins in each SQL server.
 - The policies from Microsoft Purview improve security by limiting local privileged access. They support the Principle of Least Privilege (PoLP). In the scenario, Mateo only grants the minimum access necessary that Bob and Alice need to perform the task of monitoring system health and performance.
 - When new SQL servers are added to the resource group, Mateo doesn't need to update the policy in Microsoft Purview for it to be enforced on the new SQL servers.
-- If Alice or Bob leave their job and get backfilled, Mateo just updates the Azure AD group, without having to make any changes to the servers or to the policies he created in Microsoft Purview.
+- If Alice or Bob leaves their job and get backfilled, Mateo just updates the Azure AD group, without having to make any changes to the servers or to the policies he created in Microsoft Purview.
 - At any point in time, Mateo or the company’s auditor can see all the permissions that were granted directly in Microsoft Purview Studio.
 
 | **Principle** | **Benefit** |

articles/purview/overview.md

@@ -6,7 +6,7 @@ ms.author: whhender
 ms.service: purview
 ms.custom: event-tier1-build-2022
 ms.topic: overview
-ms.date: 11/23/2022
+ms.date: 03/04/2023
 ---
 
 # What's available in the Microsoft Purview governance portal?
@@ -35,9 +35,10 @@ Atop the Data Map, there are purpose-built apps that create environments for dat
 |App  |Description  |
 |----------|-----------|
 |[Data Catalog](#data-catalog-app)  | Finds trusted data sources by browsing and searching your data assets. The data catalog aligns your assets with friendly business terms and data classification to identify data sources.      |
-|[Data Estate Insights](#data-estate-insights-app) | Gives you an overview of your data estate to help you discover what kinds of data you have and where. |
+|[Data Estate Insights](#data-estate-insights-app) | Gives you an overview of your data estate to help you discover what kinds of data you have and where it is. |
 |[Data Sharing](#data-sharing-app) | Allows you to securely share data internally or cross organizations with business partners and customers. |
 |[Data Policy](#data-policy-app) | A set of central, cloud-based experiences that help you provision access to data securely and at scale. |
+|||
 
 ## Data Catalog app
 
@@ -72,6 +73,21 @@ For more information, see our introductory guides:
 * [Self-service access policies](concept-self-service-data-access-policy.md) (preview): Self-Service: Workflow approval and automatic provisioning of access requests initiated by business analysts that discover data assets in Microsoft Purview’s catalog.
 * [DevOps policies](concept-policies-devops.md): Provision IT operations personnel access to SQL system metadata, so that they can monitor performance, health and audit security, while limiting the insider threat.
 
+Here are the benefits of the Data Policy app:
+
+| **Principle** | **Benefit** |
+|-|-|
+|*Simplify*        |Permissions are bundled into role definitions that are abstracted and consistent across data source types, like Read and Modify.|
+|                  |Reduce the need of permission expertise for each data source type.|
+|||
+|*Reduce effort*   |Graphical interface lets you navigate the data object hierarchy quickly.|
+|                  |Supports policies on entire Azure resource groups and subscriptions.|
+|||
+|*Enhance security*|Access is granted centrally and can be easily reviewed and revoked.|
+|                  |Reduces the need for privileged accounts to configure access directly at the data source.|
+|                  |Supports the Principle of Least Privilege via data resource scopes and common role definitions.|
+|||
+
 ## Traditional challenges that Microsoft Purview seeks to address
 
 ### Challenges for data consumers
@@ -115,19 +131,7 @@ Discovering and understanding data sources and their use is the primary purpose
 
 At the same time, users can contribute to the catalog by tagging, documenting, and annotating data sources that have already been registered. They can also register new data sources, which are then discovered, understood, and consumed by the community of catalog users.
 
-Lastly, Microsoft Purview Data Policy app provides a superior solution to keep your data secure. Here are the benefits of the Data Policy app:
-| **Principle** | **Benefit** |
-|-|-|
-|*Simplify*        |Permissions are bundled into role definitions that are abstracted and consistent across data source types, like Read and Modify.|
-|                  |Reduce the need of permission expertise for each data source type.|
-|||
-|*Reduce effort*   |Graphical interface lets you navigate the data object hierarchy quickly.|
-|                  |Supports policies on entire Azure resource groups and subscriptions.|
-|||
-|*Enhance security*|Access is granted centrally and can be easily reviewed and revoked.|
-|                  |Reduces the need for privileged accounts to configure access directly at the data source.|
-|                  |Supports the Principle of Least Privilege via data resource scopes and common role definitions.|
-|||
+Lastly, Microsoft Purview Data Policy app provides a superior solution to keep your data secure.
 
 ## In-region data residency