How to recall all the email sent

Hi @Princes,

Thank you for reaching out about this situation. Accidentally sending an email that contains sensitive or confidential information, especially to a large audience, can be understandably concerning, and it’s good that you’re acting quickly to limit any potential impact.

Recalling the message (user-side):

You can first attempt to recall the message by following the steps recommended by Q&A Assist:

• Go to Sent Items
• Open the message you want to recall
• Click the three dots (…)
• Select Advanced actions > Recall message

Admin-side containment:

Even if the recall succeeds, administrative actions are still strongly recommended - particularly when regulated or protected data is involved. Centralized remediation and auditing are typically handled by admins using Exchange, Microsoft Defender, or Microsoft Purview tools.

A/ Run a message trace

Admins can confirm exactly who received the message and its delivery status by running a Message Trace:

• Exchange admin center > Mail flow > Message trace

This helps identify all affected recipients and confirms whether further action is required.

Reference: Message trace in the new Exchange admin center in Exchange Online.

B/ Remove the message from mailboxes

Admins can use one of the following approaches:

Option 1: Threat Explorer / Email remediation (Microsoft Defender for Office 365 Plan 2)

If your organization has Defender for Office 365 Plan 2, admins can locate the message in Threat Explorer and take remediation actions (soft delete or hard delete), with full tracking in the Action Center.

Option 2: Microsoft Purview eDiscovery (search & purge)

For compliance and data spillage incidents, Microsoft documents a find-and-delete workflow using Purview eDiscovery and Security & Compliance PowerShell. This is specifically intended for high-risk scenarios, such as accidentally sending sensitive data to a large group.

Note: This purge process is designed for serious incidents and not for routine mailbox cleanup.

For more information: Find and delete email messages in eDiscovery | Microsoft Learn

C/ Prevent future incidents with DLP

To reduce the risk of this happening again, admins can configure Microsoft Purview Data Loss Prevention (DLP) policies:

• Show policy tips in Outlook on the web while users are composing emails
• Warn, block, or allow override based on sensitivity and recipient scope
• Send notifications to Security/Compliance teams for visibility

Common DLP controls include detecting PII, financial or health data, warning users early, and enforcing stricter controls for external or mass recipients.

For reference: Send email notifications and show policy tips for DLP policies.

I hope this guidance helps you navigate the situation and take the right next steps. If you’d like, feel free to share whether you’re an end user or an admin, and I can focus on the most relevant actions for your role.

As other users will also search for information in this community, your vote can significantly help those with similar inquiries quickly locate the most relevant resources. 

Thank you for your kindness and for contributing to the forum.   

If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".       

Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread. 

In Outlook on the web for business, a sent message can be recalled only under specific conditions and only per message, not “all emails” in bulk.

For Outlook on the web (Microsoft 365 work or school accounts in the same organization):

1. Open Outlook on the web.
2. Go to Sent Items.
3. Open the email that needs to be recalled.
4. Move focus to the Message action toolbar, then choose More actions.
5. From Advanced actions, select Recall message.
6. Confirm by selecting OK.
7. A “message recall report” email will arrive indicating whether the recall succeeded, is pending, or failed.

Key limitations from the provided context:

• Message recall is available only if both sender and recipients use Microsoft 365 work or school accounts in the same organization.
• There is no supported bulk “recall all emails” operation in Outlook; each message must be recalled individually from Sent Items.
• If the account is not an Exchange/Microsoft 365 work or school account (for example, POP/MAPI or consumer Outlook.com in some cases), recall will not work.

For centrally removing messages from user mailboxes, running message trace, or enforcing DLP policies, those actions require Exchange Online/Microsoft 365 admin tools and security/compliance features, which are not detailed in the provided context.

References:

• Basic tasks using a screen reader with email in Outlook
• Recall or replace a sent email in Outlook