{"id":70066,"date":"2017-09-25T05:59:56","date_gmt":"2017-09-25T12:59:56","guid":{"rendered":"http:\/\/blogs.microsoft.com\/microsoftsecure\/?p=70066"},"modified":"2023-05-15T23:07:05","modified_gmt":"2023-05-16T06:07:05","slug":"new-microsoft-365-features-to-accelerate-gdpr-compliance","status":"publish","type":"post","link":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2017\/09\/25\/new-microsoft-365-features-to-accelerate-gdpr-compliance\/","title":{"rendered":"New Microsoft 365 features to accelerate GDPR compliance"},"content":{"rendered":"

This post is authored by Alym Rayani, Director Office 365 Security.\u00a0<\/em><\/p>\n

New capabilities in Microsoft 365 help simplify your GDPR compliance journey<\/h2>\n

Today we made several Microsoft 365 security and compliance announcements and updates as part of the news from the Microsoft Ignite conference. I wanted to share how these new capabilities provide customers with a more complete and protected solution to simplify their journey to compliance with the General Data Protection Regulation (GDPR)<\/a>.<\/p>\n

Earlier this year, we brought together Office 365, Enterprise Mobility + Security, and Windows into a single, always-up-to-date solution called Microsoft 365 \u2013 relieving organizations from much of the cost of multiple, fragmented systems that were not necessarily designed to be compliant with modern standards. These announcements at Ignite add to our extensive capabilities that organizations are already using to secure and manage their data, users, and devices.<\/p>\n

A platform you can trust, and verify<\/h3>\n

We understand that organizations with GDPR responsibilities will have additional needs to demonstrate compliance, and we\u2019re investing in tools to help them achieve those goals.<\/p>\n

Microsoft 365 users enjoy built-in security and compliance for the apps, services, and devices that they use every day. Microsoft has a long history of transparency, defense-in-depth, and privacy-by-design that enabled us to be the first enterprise cloud services provider to implement the rigorous controls needed to earn approval for the EU Model Clauses, the first to achieve ISO\u2019s 27018 cloud privacy standard, and the first to offer contractual commitments to the GDPR.<\/p>\n

Introducing Compliance Manager<\/strong> \u2013 We understand that achieving your organizational compliance goals can be very challenging. It\u2019s hard to stay up-to-date with all the regulations that matter to your organization, and to define and implement the controls.<\/p>\n

We\u2019re pleased to introduce Compliance Manager, a new compliance solution that helps you to manage your compliance posture from one place. Compliance Manager enables you to conduct real-time risk assessment, providing one intelligent score that reflects your compliance performance against data protection regulatory requirements when using Microsoft cloud services.<\/p>\n

You will also be able to use the built-in control management and audit-ready reporting tools to improve and monitor your compliance posture. Read our Tech Community Blog<\/a>\u00a0to learn more about Compliance Manager, and sign up for the preview program<\/a>, which will be available starting in November.<\/p>\n

\"\"<\/p>\n

Example of Compliance Manager dashboard<\/em><\/p>\n

General availability of service encryption with Customer Key<\/strong> \u2013 We\u2019re announcing the availability of service encryption with Customer Key, which can help regulated customers demonstrate additional compliance controls by managing the encryption keys for their Office 365 data. Here is an example of how Customer Key works in SharePoint Online:<\/p>\n