Microsoft Priva<\/h2>\n\n\t\t\t\t\t\n\t\t\t\t\t\tProtect personal data, automate risk mitigation, and manage subject rights requests at scale.<\/p>\n\t\t\t\t\t<\/div>\n\n\t\t\t\t\t\t\t\t\t\t\t
\n\t\t\t\t\t\t\t\n\t\t\t\t\t\t\t\tLearn more<\/span>\n\t\t\t\t\t\t\t\t<\/span>\n\t\t\t\t\t\t\t<\/a>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t\t\t\t\t\t<\/div>\n\t\t\t<\/div>\n\n\t\t\t\t\t\t\t\n\t\t\t\t\t![\"Enterprise](\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-content\/uploads\/2023\/02\/CLO22_TechOffice_022-1024x794.jpg\")
\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t<\/div>\n<\/div>\n\n\n\nHow can Microsoft Priva help?<\/h2>\n\n\n\nMicrosoft Priva brings automated functionality to help organizations meet adapting privacy requirements related to personal data. Today, Microsoft Priva offers two solutions:<\/p>\n\n\n\n
Microsoft Priva Privacy Risk Management<\/strong><\/a><\/strong><\/p>\n\n\n\n
\n- Identifying personal data and privacy risks<\/strong>: <\/strong>It allows organizations to leverage auto-classification technology to identify more than 308 personal data types in the Microsoft 365 environment, with no configuration needed. Admins can see personal data by location, geography, and types. In addition to helping organizations know their personal data landscape, Microsoft Priva also detects the associated risks around personal data and gives admins actionable insights.<\/li>\n<\/ul>\n\n\n\n
\n- Automating mitigation and preventing privacy incidents<\/strong>: <\/strong>Organizations can create policies from pre-configured templates to automate privacy risk mitigation:\n
\n- Data minimization: <\/strong>Helps detect unused personal data, send users email digests to review and delete obsolete items, and provides privacy training to reduce data hoarding.<\/li>\n\n\n\n
- Data transfer: <\/strong>Helps detect personal data movements between customizable boundaries, such as geography or departments, and blocks risky transfers in near real time.<\/li>\n\n\n\n
- Data overexposure:<\/strong> Helps detect personal data overshare, informs file owners to review and adjust access, and provides privacy training to reduce overexposure incidents.<\/li>\n<\/ul>\n<\/li>\n<\/ul>\n\n\n\n
\n- Empowering employees to make smart data-handling decisions<\/strong>: Admins can configure Priva to help employees make better data-handling decisions, as no one knows the value of their files more than the data owner. Microsoft Priva can trigger a system-generated email or Microsoft Teams message to a data owner with recommended actions and privacy best practices\u2014right in their flow of work. <\/li>\n<\/ul>\n\n\n\n
Microsoft Priva Subject Rights Requests<\/strong><\/a><\/strong><\/p>\n\n\n\n
Depending on where you are in the world today, there will be varying privacy regulations that impact your business, and even if you\u2019re not impacted much today, chances are that it\u2019s a matter of time before they are enabled. Many of these privacy regulations empower people to exercise their rights over their data, requesting that the organizations they do business with or work for provide a log of all personal data collected. For organizations, the process of completing subject rights requests can be a manual, complex, time-consuming, and expensive process, that is also time bound. Microsoft Priva Subject Rights Requests help organizations manage requests at scale and with confidence by:<\/p>\n\n\n\n
\n- Automating discovery:<\/strong> Gathers the requestor\u2019s personal information and detects data conflicts such as sensitive information or data pertaining to other users.<\/li>\n\n\n\n
- In-place review and secure collaboration: <\/strong>Review and redact files located in the live system in their native views without creating duplicate copies and bring collaboration to a protected platform.<\/li>\n\n\n\n
- Ecosystem integration: <\/strong>Plugs into organizations existing processes to manage requests in a unified way across digital estate. Microsoft Graph subject rights requests API integrates Priva Subject Rights Requests with in-house or partner-built privacy solutions.<\/li>\n<\/ul>\n\n\n\n
Enhancements to Microsoft Priva<\/h2>\n\n\n\n
Updates to Microsoft Priva include added customization, better insights, easier collaboration, powerful review options, and so much more.<\/p>\n\n\n\n
What\u2019s new with Microsoft Priva Privacy Risk Management?<\/h3>\n\n\n\n
Deeper data viewpoints<\/h4>\n\n\n\n
The data minimization policy in Privacy Risk Management has been a highly resonating privacy scenario. With this update of day zero insights<\/a>, admins will be able to view data minimization policy insights 72 hours after starting Priva, with a view of data up to the past 90 days. Previously, customers would have waited at least 30 days to catch policy matches. With a better history of data, privacy admins can understand privacy trends better, and use these data points to strategize the best approach for their organizations.<\/p>\n\n\n\n
Better together integration<\/h4>\n\n\n\n
Microsoft Purview Compliance Manager<\/a> offers data protection and privacy assessment templates that correspond to compliance regulations and industry standards around the world. Now available is Microsoft Priva<\/a> working hand-in-hand with Compliance Manager. With this update, admins can take specific actions within Microsoft Priva that achieve points that count toward assessment completion and increase the overall compliance score. Examples of actions that can detect and provide credit include admins setting up a Privacy Risk Management policy, or enabling data retention limits for a subject rights request\u2014prompting collaboration that yields better together productivity. <\/p>\n\n\n
![\"Microsoft](\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-content\/uploads\/2023\/08\/Picture1-1-1024x573.webp\")
<\/figure>\n\n\n\nFigure 1. Visual of Compliance Manager recognizing actions taken within the Priva solution in the \u201cimprovement actions\u201d section of Compliance Manager.<\/em> <\/p>\n\n\n\n
Additionally, insights from Compliance Manager will now populate within Priva itself. This update brings recommendations on actions that will help admins align to regulations and improve their score in Compliance Manager. <\/p>\n\n\n\n
What\u2019s new with Microsoft Priva Subject Rights Requests?<\/h3>\n\n\n\nFulfill more request types<\/h4>\n\n\n\n
Many regulations, including General Data Protection Regulation and California Consumer Privacy Act include the right to be forgotten, giving people the ability to request the deletion of all the information an organization has collected about them, with a few outlined exceptions that allow data retention. Today, we are excited to share that Priva Subject Rights Requests delete<\/a> is now generally available\u2014admins can now select delete<\/strong> as a request type, or get started with the delete template and get purpose-built flows that help surface conflicts and streamline deletion (leveraging the Microsoft retention and deletion platform and working better together with teams already using data lifecycle management<\/a> and records management). This feature will also enable admins to have the flexibility to select different approvers for any given request and, once the workflow is complete, access the reports tab where they can view their summary report and review results.<\/p>\n\n\n
![\"Delete](\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-content\/uploads\/2023\/08\/Picture2-2-1024x578.webp\")
<\/figure>\n\n\n\nFigure 2. Stage three of five of a delete subject rights requests in progress within the Priva Subject Rights Request solution.<\/em><\/p>\n\n\n\n
Watch this short video to see Priva Subject Rights Requests delete in action.<\/p>\n\n\n\n
Protect personal data, automate risk mitigation, and manage subject rights requests at scale.<\/p>\n\t\t\t\t\t<\/div>\n\n\t\t\t\t\t\t\t\t\t\t\t
\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t<\/div>\n<\/div>\n\n\n\nHow can Microsoft Priva help?<\/h2>\n\n\n\nMicrosoft Priva brings automated functionality to help organizations meet adapting privacy requirements related to personal data. Today, Microsoft Priva offers two solutions:<\/p>\n\n\n\n
Microsoft Priva Privacy Risk Management<\/strong><\/a><\/strong><\/p>\n\n\n\n
- \n
- Identifying personal data and privacy risks<\/strong>: <\/strong>It allows organizations to leverage auto-classification technology to identify more than 308 personal data types in the Microsoft 365 environment, with no configuration needed. Admins can see personal data by location, geography, and types. In addition to helping organizations know their personal data landscape, Microsoft Priva also detects the associated risks around personal data and gives admins actionable insights.<\/li>\n<\/ul>\n\n\n\n
- \n
- Automating mitigation and preventing privacy incidents<\/strong>: <\/strong>Organizations can create policies from pre-configured templates to automate privacy risk mitigation:\n
- \n
- Data minimization: <\/strong>Helps detect unused personal data, send users email digests to review and delete obsolete items, and provides privacy training to reduce data hoarding.<\/li>\n\n\n\n
- Data transfer: <\/strong>Helps detect personal data movements between customizable boundaries, such as geography or departments, and blocks risky transfers in near real time.<\/li>\n\n\n\n
- Data overexposure:<\/strong> Helps detect personal data overshare, informs file owners to review and adjust access, and provides privacy training to reduce overexposure incidents.<\/li>\n<\/ul>\n<\/li>\n<\/ul>\n\n\n\n
- \n
- Empowering employees to make smart data-handling decisions<\/strong>: Admins can configure Priva to help employees make better data-handling decisions, as no one knows the value of their files more than the data owner. Microsoft Priva can trigger a system-generated email or Microsoft Teams message to a data owner with recommended actions and privacy best practices\u2014right in their flow of work. <\/li>\n<\/ul>\n\n\n\n
Microsoft Priva Subject Rights Requests<\/strong><\/a><\/strong><\/p>\n\n\n\n
Depending on where you are in the world today, there will be varying privacy regulations that impact your business, and even if you\u2019re not impacted much today, chances are that it\u2019s a matter of time before they are enabled. Many of these privacy regulations empower people to exercise their rights over their data, requesting that the organizations they do business with or work for provide a log of all personal data collected. For organizations, the process of completing subject rights requests can be a manual, complex, time-consuming, and expensive process, that is also time bound. Microsoft Priva Subject Rights Requests help organizations manage requests at scale and with confidence by:<\/p>\n\n\n\n
- \n
- Automating discovery:<\/strong> Gathers the requestor\u2019s personal information and detects data conflicts such as sensitive information or data pertaining to other users.<\/li>\n\n\n\n
- In-place review and secure collaboration: <\/strong>Review and redact files located in the live system in their native views without creating duplicate copies and bring collaboration to a protected platform.<\/li>\n\n\n\n
- Ecosystem integration: <\/strong>Plugs into organizations existing processes to manage requests in a unified way across digital estate. Microsoft Graph subject rights requests API integrates Priva Subject Rights Requests with in-house or partner-built privacy solutions.<\/li>\n<\/ul>\n\n\n\n
Enhancements to Microsoft Priva<\/h2>\n\n\n\n
Updates to Microsoft Priva include added customization, better insights, easier collaboration, powerful review options, and so much more.<\/p>\n\n\n\n
What\u2019s new with Microsoft Priva Privacy Risk Management?<\/h3>\n\n\n\n
Deeper data viewpoints<\/h4>\n\n\n\n
The data minimization policy in Privacy Risk Management has been a highly resonating privacy scenario. With this update of day zero insights<\/a>, admins will be able to view data minimization policy insights 72 hours after starting Priva, with a view of data up to the past 90 days. Previously, customers would have waited at least 30 days to catch policy matches. With a better history of data, privacy admins can understand privacy trends better, and use these data points to strategize the best approach for their organizations.<\/p>\n\n\n\n
Better together integration<\/h4>\n\n\n\n
Microsoft Purview Compliance Manager<\/a> offers data protection and privacy assessment templates that correspond to compliance regulations and industry standards around the world. Now available is Microsoft Priva<\/a> working hand-in-hand with Compliance Manager. With this update, admins can take specific actions within Microsoft Priva that achieve points that count toward assessment completion and increase the overall compliance score. Examples of actions that can detect and provide credit include admins setting up a Privacy Risk Management policy, or enabling data retention limits for a subject rights request\u2014prompting collaboration that yields better together productivity. <\/p>\n\n\n
<\/figure>\n\n\n\nFigure 1. Visual of Compliance Manager recognizing actions taken within the Priva solution in the \u201cimprovement actions\u201d section of Compliance Manager.<\/em> <\/p>\n\n\n\n
Additionally, insights from Compliance Manager will now populate within Priva itself. This update brings recommendations on actions that will help admins align to regulations and improve their score in Compliance Manager. <\/p>\n\n\n\n
What\u2019s new with Microsoft Priva Subject Rights Requests?<\/h3>\n\n\n\n
Fulfill more request types<\/h4>\n\n\n\n
Many regulations, including General Data Protection Regulation and California Consumer Privacy Act include the right to be forgotten, giving people the ability to request the deletion of all the information an organization has collected about them, with a few outlined exceptions that allow data retention. Today, we are excited to share that Priva Subject Rights Requests delete<\/a> is now generally available\u2014admins can now select delete<\/strong> as a request type, or get started with the delete template and get purpose-built flows that help surface conflicts and streamline deletion (leveraging the Microsoft retention and deletion platform and working better together with teams already using data lifecycle management<\/a> and records management). This feature will also enable admins to have the flexibility to select different approvers for any given request and, once the workflow is complete, access the reports tab where they can view their summary report and review results.<\/p>\n\n\n
<\/figure>\n\n\n\nFigure 2. Stage three of five of a delete subject rights requests in progress within the Priva Subject Rights Request solution.<\/em><\/p>\n\n\n\n
Watch this short video to see Priva Subject Rights Requests delete in action.<\/p>\n\n\n\n
- Empowering employees to make smart data-handling decisions<\/strong>: Admins can configure Priva to help employees make better data-handling decisions, as no one knows the value of their files more than the data owner. Microsoft Priva can trigger a system-generated email or Microsoft Teams message to a data owner with recommended actions and privacy best practices\u2014right in their flow of work. <\/li>\n<\/ul>\n\n\n\n
- Automating mitigation and preventing privacy incidents<\/strong>: <\/strong>Organizations can create policies from pre-configured templates to automate privacy risk mitigation:\n