It could have something to do with "corporate" requirements. When businesses have remote employees, or people on the go, accessing the corporate VPNs, they tend to want to disable all non-VPN traffic. This avoids possibilities of malicious internet actors tunnelling through the remote machine, through the VPN, to inside of the corporate firewalls.

There may be some other setting or app on the device which is triggering this "corporate mode", so think about what that might be.

Cheers