{"id":75237,"date":"2017-12-19T09:00:47","date_gmt":"2017-12-19T17:00:47","guid":{"rendered":"https:\/\/cloudblogs.microsoft.com\/microsoftsecure\/?p=75237"},"modified":"2023-05-15T23:03:13","modified_gmt":"2023-05-16T06:03:13","slug":"how-microsoft-tools-and-partners-support-gdpr-compliance","status":"publish","type":"post","link":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2017\/12\/19\/how-microsoft-tools-and-partners-support-gdpr-compliance\/","title":{"rendered":"How Microsoft tools and partners support GDPR compliance"},"content":{"rendered":"<p><em>This post is authored by Daniel Grabski,\u00a0Executive Security Advisor, Microsoft Enterprise Cybersecurity Group.<\/em><\/p>\n<p>As an Executive Security Advisor for enterprises in Europe and the Middle East, I regularly engage with Chief Information Security Officers (CISOs), Chief Information Officers (CIOs) and Data Protection Officers (DPOs) to discuss their thoughts and concerns regarding the <a href=\"http:\/\/ec.europa.eu\/justice\/data-protection\/reform\/index_en.htm\">General Data Protection Regulation, or GDPR<\/a>. In my last post about <a href=\"http:\/\/www.eugdpr.org\/\">GDPR<\/a>, I focused on how GDPR is driving the agenda of CISOs. This post will present resources to address these concerns.<\/p>\n<p>Some common questions are \u201cHow can Microsoft help our customers to be compliant with GDPR?\u201d and, \u201cDoes Microsoft have tools and services to support the GDPR journey?\u201d Another is, \u201cHow can I engage current investments in Microsoft technology to address GDPR requirements?\u201d<\/p>\n<p>To help answer these, I will address the following:<\/p>\n<ul>\n<li>GDPR benchmark assessment tool<\/li>\n<li>Microsoft partners &amp; GDPR<\/li>\n<li>Microsoft Compliance Manager<\/li>\n<li>New features in Azure Information Protection<\/li>\n<\/ul>\n<h2>Tools for CISOs<\/h2>\n<p>There are tools available that can ease kick-off activities for CISOs, CIOs, and DPOs. These tools can help them better understand their GDPR compliance, including which areas are most important to be improved.<\/p>\n<ul>\n<li>To begin, Microsoft offers a free <a href=\"https:\/\/www.gdprbenchmark.com\/\">GDPR benchmark assessment<\/a> tool which is available online to any business or organization.\u00a0The assessment questions are designed to assist our customers to identify technologies and steps that can be implemented to simplify GDPR compliance efforts. It is also a tool allowing increased visibility and understanding of features available in Microsoft technologies that may already be available in existing infrastructures. The tool can reveal what already exists and what is not addressed to support each GDPR journey. As an outcome of the assessment, a full report is sent\u2014an example of which is shown here.<\/li>\n<\/ul>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter wp-image-75240 size-large\" src=\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/\/wp-content\/uploads\/2017\/12\/Image-1-GDPR-benchmarking-tool-1024x521.png\" alt=\"GDPR benchmarking tool.\" width=\"1024\" height=\"521\" srcset=\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-content\/uploads\/2017\/12\/Image-1-GDPR-benchmarking-tool-1024x521.png 1024w, https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-content\/uploads\/2017\/12\/Image-1-GDPR-benchmarking-tool-300x153.png 300w, https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-content\/uploads\/2017\/12\/Image-1-GDPR-benchmarking-tool-768x391.png 768w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/p>\n<p style=\"text-align: center;\"><em>Image 1: GDPR benchmarking tool<\/em><\/p>\n<p>As an example, see below the mapping to the first question in the Assessment. This is based on how Microsoft technology can support requirements about collection, storage, and usage of personal data; it is necessary to first identify the personal data currently held.<\/p>\n<ul>\n<li><a href=\"https:\/\/azure.microsoft.com\/en-us\/services\/data-catalog\/\">Azure Data Catalog<\/a> provides a service in which many common data sources can be registered, tagged, and searched for personal data. Azure Search allows our customers to locate data across user-defined indexes. It is also possible to search for user accounts in Azure Active Directory. For example, CISOs can use the Azure Data Catalog portal to remove preview data from registered data assets and delete data assets from the catalog:<\/li>\n<\/ul>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter wp-image-75243 size-large\" src=\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/\/wp-content\/uploads\/2017\/12\/Image-2-Azure-Data-Catalogue-1024x543.png\" alt=\"Azure Data Catalogue.\" width=\"1024\" height=\"543\" srcset=\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-content\/uploads\/2017\/12\/Image-2-Azure-Data-Catalogue-1024x543.png 1024w, https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-content\/uploads\/2017\/12\/Image-2-Azure-Data-Catalogue-300x159.png 300w, https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-content\/uploads\/2017\/12\/Image-2-Azure-Data-Catalogue-768x407.png 768w, https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-content\/uploads\/2017\/12\/Image-2-Azure-Data-Catalogue.png 1443w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/p>\n<p style=\"text-align: center;\"><em>Image 2: Azure Data Catalogue<\/em><\/p>\n<ul>\n<li><a href=\"https:\/\/dynamics.microsoft.com\/en-us\/\">Dynamics 365<\/a> provides multiple methods to search for personal data within records such as Advanced Find, Quick Find, Relevance Search, and Filters. These functions each enable the identification of personal data.<\/li>\n<li><a href=\"https:\/\/products.office.com\/en-us\/business\/\">Office 365<\/a> includes powerful tools to identify personal data across Exchange Online, SharePoint Online, OneDrive for Business, and Skype for Business environments. <a href=\"https:\/\/support.office.com\/en-us\/article\/Run-a-Content-Search-in-the-Office-365-Security-Compliance-Center-61852fd9-fe8a-4880-a339-cb19ed3bff4a\">Content Search<\/a> allows queries for personal data using relevant keywords, file properties, or built-in templates. <a href=\"https:\/\/support.office.com\/en-us\/article\/Office-365-Advanced-eDiscovery-fd53438a-a760-45f6-9df4-861b50161ae4\">Advanced eDiscovery<\/a> identifies relevant data faster, and with better precision, than traditional keyword searches by finding near-duplicate files, reconstructing email threads, and identifying key themes and data relationships. Image 3 illustrates the common workflow for managing and using eDiscovery cases in the Security &amp; Compliance Center and Advanced eDiscovery.<\/li>\n<\/ul>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter wp-image-75243 size-large\" src=\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-content\/uploads\/2017\/12\/Image-2-Azure-Data-Catalogue-1024x543.png\" alt=\"Security &amp; Compliance Center and Advanced eDiscovery.\" width=\"1024\" height=\"543\" srcset=\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-content\/uploads\/2017\/12\/Image-2-Azure-Data-Catalogue-1024x543.png 1024w, https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-content\/uploads\/2017\/12\/Image-2-Azure-Data-Catalogue-300x159.png 300w, https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-content\/uploads\/2017\/12\/Image-2-Azure-Data-Catalogue-768x407.png 768w, https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-content\/uploads\/2017\/12\/Image-2-Azure-Data-Catalogue.png 1443w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/p>\n<p style=\"text-align: center;\"><em>Image 3: Security &amp; Compliance Center and Advanced eDiscovery<\/em><\/p>\n<ul>\n<li><a href=\"https:\/\/www.microsoft.com\/en-us\/itpro\/windows-10\">Windows 10<\/a> and <a href=\"https:\/\/www.microsoft.com\/en-us\/cloud-platform\/windows-server\">Windows Server 2016<\/a> have tools to locate personal data, including PowerShell, which can find data housed in local and connected storage, as well as search for files and items by file name, properties, and full-text contents for some common file and data types.<\/li>\n<\/ul>\n<p>A sample outcome, based on one of the questions regarding GDPR requirements, as shown in Image 4.<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter wp-image-75249 size-large\" src=\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/\/wp-content\/uploads\/2017\/12\/image-4-example-of-the-GDPR-967x1024.png\" alt=\"Example of the GDPR requirements mapped with features in the Microsoft platform.\" width=\"967\" height=\"1024\" srcset=\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-content\/uploads\/2017\/12\/image-4-example-of-the-GDPR-967x1024.png 967w, https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-content\/uploads\/2017\/12\/image-4-example-of-the-GDPR-283x300.png 283w, https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-content\/uploads\/2017\/12\/image-4-example-of-the-GDPR-768x814.png 768w, https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-content\/uploads\/2017\/12\/image-4-example-of-the-GDPR.png 1026w\" sizes=\"auto, (max-width: 967px) 100vw, 967px\" \/><\/p>\n<p style=\"text-align: center;\"><em>Image 4: Example of the GDPR requirements mapped with features in the Microsoft platform<\/em><\/p>\n<h2>Resources for CISOs<\/h2>\n<p>Microsoft\u2019s approach to GDPR relies heavily on working together with partners. Therefore, we built a broader version of the GDPR benchmarking tool available to customers through the extensive <a href=\"https:\/\/partner.microsoft.com\/\">Microsoft Partner Network<\/a>. The tool provides an in-depth analysis of an organization\u2019s readiness and offers actionable guidance on how to prepare for compliance, including how Microsoft products and features can help simplify the journey.<\/p>\n<p>The Microsoft <a href=\"https:\/\/partner.microsoft.com\/en-us\/marketing\/details\/gdpr#\/\">GDPR Detailed Assessment<\/a>\u00a0is intended to be used by Microsoft partners who are assisting customers to assess where they are on their journey to GDPR readiness. The GDPR Detailed Assessment is accompanied by supporting materials to assist our partners in facilitating customer assessments.<\/p>\n<p>In a nutshell, the GDPR Detailed Assessment is a three-step process where Microsoft partners engage with customers to assess their overall GDPR maturity. Image 5 below presents a high-level overview of the steps.<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter wp-image-75252 size-full\" src=\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/\/wp-content\/uploads\/2017\/12\/Image-5.jpg\" alt=\"The GDPR Detailed Assessment is a three-step process where Microsoft partners engage with customers to assess their overall GDPR maturity.\" width=\"506\" height=\"198\" srcset=\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-content\/uploads\/2017\/12\/Image-5.jpg 506w, https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-content\/uploads\/2017\/12\/Image-5-300x117.jpg 300w\" sizes=\"auto, (max-width: 506px) 100vw, 506px\" \/><\/p>\n<p style=\"text-align: center;\"><em>Image 5<\/em><\/p>\n<p>The duration for the partner engagement is expected to last 3-4 weeks, while the total effort is estimated to be 10 to 20 hours, depending on the complexity of the organization and the number of participants as you can see below.<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter wp-image-75255 size-full\" src=\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/\/wp-content\/uploads\/2017\/12\/Image-6-duration-of-the-engagement.png\" alt=\"Duration of the engagement.\" width=\"958\" height=\"280\" srcset=\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-content\/uploads\/2017\/12\/Image-6-duration-of-the-engagement.png 958w, https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-content\/uploads\/2017\/12\/Image-6-duration-of-the-engagement-300x88.png 300w, https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-content\/uploads\/2017\/12\/Image-6-duration-of-the-engagement-768x224.png 768w\" sizes=\"auto, (max-width: 958px) 100vw, 958px\" \/><\/p>\n<p style=\"text-align: center;\"><em>Image 6: Duration of the engagement<\/em><\/p>\n<p>The Microsoft GDPR Detailed Assessment is intended for use by Microsoft partners to assess their customers\u2019 overall GDPR maturity. It is not offered as a GDPR compliance attestation. Customers are responsible to ensure their own GDPR compliance and are advised to consult their legal and compliance teams for guidance. This tool is intended to highlight resources that can be used by partners to support a customer\u2019s journey towards GDPR compliance.<\/p>\n<p>We are all aware that achieving organizational compliance may be challenging. It is hard to stay up-to-date with all the regulations that matter to organizations and to define and implement controls with limited in-house capability.<\/p>\n<p>To address these challenges, Microsoft announced a new compliance solution to help organizations meet data protection and regulatory standards more easily when using Microsoft cloud services \u2013 <strong>Compliance Manager<\/strong>. <a href=\"https:\/\/aka.ms\/compliance-manager-preview\">The preview program<\/a>, available today, addresses compliance management challenges and:<\/p>\n<ul>\n<li>Enables real-time risk assessment on Microsoft cloud services<\/li>\n<li>Provides actionable insights to improve data protection capabilities<\/li>\n<li>Simplifies compliance processes through built-in control management and audit-ready reporting tools<\/li>\n<\/ul>\n<p>Image 7 shows a dashboard summary illustrating a compliance posture against the data protection regulatory requirements that matter when using Microsoft cloud services. The dashboard summarizes Microsoft\u2019s and your performance on control implementation on various data protection standards and regulations, including GDPR, ISO 27001, and ISO 27018.<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter wp-image-75258\" src=\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-content\/uploads\/2017\/12\/Image-7-Compliance-Manager-dashboard-1024x820.png\" alt=\"Compliance Manager dashboard.\" width=\"922\" height=\"739\" srcset=\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-content\/uploads\/2017\/12\/Image-7-Compliance-Manager-dashboard-1024x820.png 1024w, https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-content\/uploads\/2017\/12\/Image-7-Compliance-Manager-dashboard-300x240.png 300w, https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-content\/uploads\/2017\/12\/Image-7-Compliance-Manager-dashboard-768x615.png 768w, https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-content\/uploads\/2017\/12\/Image-7-Compliance-Manager-dashboard.png 1780w\" sizes=\"auto, (max-width: 922px) 100vw, 922px\" \/><\/p>\n<p style=\"text-align: center;\"><em>Image 7: Compliance Manager dashboard<\/em><\/p>\n<p>Having a holistic view is just the beginning. Use the rich insights available in Compliance Manager to go deeper to understand what should be done and improved. Each Microsoft-managed control illuminates the implementation and testing details, test date, and results. The tool provides recommended actions with step-by-step guidance. It aides better understanding of how to use the Microsoft cloud features to efficiently implement the controls managed by your organization. Image 8 shows an example of the insight provided by the tool.<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter wp-image-75261 size-large\" src=\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/\/wp-content\/uploads\/2017\/12\/Image-8-Information-to-help-you-improve-your-data-protection-capabilities-1024x682.jpg\" alt=\"Information to help you improve your data protection capabilities.\" width=\"1024\" height=\"682\" srcset=\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-content\/uploads\/2017\/12\/Image-8-Information-to-help-you-improve-your-data-protection-capabilities-1024x682.jpg 1024w, https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-content\/uploads\/2017\/12\/Image-8-Information-to-help-you-improve-your-data-protection-capabilities-300x200.jpg 300w, https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-content\/uploads\/2017\/12\/Image-8-Information-to-help-you-improve-your-data-protection-capabilities-768x512.jpg 768w, https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-content\/uploads\/2017\/12\/Image-8-Information-to-help-you-improve-your-data-protection-capabilities.jpg 1474w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/p>\n<p style=\"text-align: center;\"><em>Image 8: \u00a0Information to help you improve your data protection capabilities<\/em><\/p>\n<p>During the recent\u00a0<a href=\"https:\/\/myignite.microsoft.com\/sessions\/53453?source=sessions\">Microsoft Ignite conference<\/a>, Microsoft announced Azure Information Protection scanner. The feature is now <a href=\"https:\/\/cloudblogs.microsoft.com\/enterprisemobility\/2017\/10\/25\/azure-information-protection-scanner-in-public-preview\/\">available in public preview<\/a>. This will help to manage and protect significant on-premise data and help prepare our customers and partners for regulations such as GDPR.<\/p>\n<p>We released <a href=\"https:\/\/www.microsoft.com\/en-us\/cloud-platform\/azure-information-protection\">Azure Information Protection (AIP)<\/a> to provide the ability to define a data classification taxonomy and apply those business rules to emails and documents. This feature is critical to protecting the data correctly throughout the lifecycle, regardless of where it is stored or shared.<\/p>\n<p>We receive a lot of questions about how Microsoft can help to discover, label, and protect existing files to ensure all sensitive information is appropriately managed. The AIP scanner can:<\/p>\n<ul>\n<li>Discover sensitive data that is stored in existing repositories when planning data-migration projects to cloud storage, to ensure toxic data remains in place.<\/li>\n<li>Locate data that includes personal data and learn where it is stored to meet regulatory and compliance needs<\/li>\n<li>Leverage existing metadata that was applied to files using other solutions<\/li>\n<\/ul>\n<p>I encourage you to enroll for the preview version of <a href=\"https:\/\/cloudblogs.microsoft.com\/enterprisemobility\/2017\/10\/25\/azure-information-protection-scanner-in-public-preview\/\">Azure Information Protection scanner<\/a> and to continue to grow your knowledge about how Microsoft is addressing GDPR and general security with these helpful resources:<\/p>\n<ul>\n<li>GDPR resources: <a href=\"https:\/\/microsoft.com\/gdpr\">www.microsoft.com\/gdpr<\/a><\/li>\n<li>GDPR \u201c<a href=\"https:\/\/aka.ms\/gdprjourneywhitepaper\">Beginning your GDPR Journey<\/a>\u201d whitepaper<\/li>\n<\/ul>\n<hr \/>\n<p><span style=\"text-decoration: underline;\">About the author:<\/span><\/p>\n<p><em>Daniel Grabski is a 20-year veteran of the IT industry, currently serving as an Executive Security Advisor for organizations in Europe, the Middle East, and Africa with Microsoft Enterprise Cybersecurity Group. In this role he focuses on enterprises, partners, public sector customers and critical infrastructure stakeholders delivering strategic security expertise, advising on cybersecurity solutions and services needed to build and maintain secure and resilient ICT infrastructure.<\/em><\/p>\n","protected":false},"excerpt":{"rendered":"<p>There are tools available that can ease kick-off activities for CISOs, CIOs, and DPOs. These tools can help them better understand their GDPR compliance, including which areas are most important to be improved.<\/p>\n","protected":false},"author":61,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"ms_queue_force_push":false,"ms_queue_id":"","ep_exclude_from_search":false,"_classifai_error":"","_classifai_text_to_speech_error":"","footnotes":""},"content-type":[3663],"topic":[3687],"products":[3690,3694,3695],"threat-intelligence":[3727],"tags":[],"coauthors":[1916],"class_list":["post-75237","post","type-post","status-publish","format-standard","hentry","content-type-research","topic-threat-intelligence","products-microsoft-defender","products-microsoft-defender-for-endpoint","products-microsoft-defender-for-office-365","threat-intelligence-attacker-techniques-tools-and-infrastructure"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v24.2 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>How Microsoft tools and partners support GDPR compliance | Microsoft Security Blog<\/title>\n<meta name=\"description\" content=\"There are tools available that can ease kick-off activities for CISOs, CIOs, and DPOs. These tools can help them better understand their GDPR compliance, including which areas are most important to be improved.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2017\/12\/19\/how-microsoft-tools-and-partners-support-gdpr-compliance\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"How Microsoft tools and partners support GDPR compliance | Microsoft Security Blog\" \/>\n<meta property=\"og:description\" content=\"There are tools available that can ease kick-off activities for CISOs, CIOs, and DPOs. These tools can help them better understand their GDPR compliance, including which areas are most important to be improved.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2017\/12\/19\/how-microsoft-tools-and-partners-support-gdpr-compliance\/\" \/>\n<meta property=\"og:site_name\" content=\"Microsoft Security Blog\" \/>\n<meta property=\"article:published_time\" content=\"2017-12-19T17:00:47+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2023-05-16T06:03:13+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/\/wp-content\/uploads\/2017\/12\/Image-1-GDPR-benchmarking-tool-1024x521.png\" \/>\n<meta name=\"author\" content=\"Microsoft Security Team\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Microsoft Security Team\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"6 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2017\/12\/19\/how-microsoft-tools-and-partners-support-gdpr-compliance\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2017\/12\/19\/how-microsoft-tools-and-partners-support-gdpr-compliance\/\"},\"author\":[{\"@id\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/author\/microsoft-secure-blog-staff\/\",\"@type\":\"Person\",\"@name\":\"Microsoft Security Team\"}],\"headline\":\"How Microsoft tools and partners support GDPR compliance\",\"datePublished\":\"2017-12-19T17:00:47+00:00\",\"dateModified\":\"2023-05-16T06:03:13+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2017\/12\/19\/how-microsoft-tools-and-partners-support-gdpr-compliance\/\"},\"wordCount\":1397,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/#organization\"},\"image\":{\"@id\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2017\/12\/19\/how-microsoft-tools-and-partners-support-gdpr-compliance\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/\/wp-content\/uploads\/2017\/12\/Image-1-GDPR-benchmarking-tool-1024x521.png\",\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2017\/12\/19\/how-microsoft-tools-and-partners-support-gdpr-compliance\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2017\/12\/19\/how-microsoft-tools-and-partners-support-gdpr-compliance\/\",\"url\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2017\/12\/19\/how-microsoft-tools-and-partners-support-gdpr-compliance\/\",\"name\":\"How Microsoft tools and partners support GDPR compliance | Microsoft Security Blog\",\"isPartOf\":{\"@id\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2017\/12\/19\/how-microsoft-tools-and-partners-support-gdpr-compliance\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2017\/12\/19\/how-microsoft-tools-and-partners-support-gdpr-compliance\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/\/wp-content\/uploads\/2017\/12\/Image-1-GDPR-benchmarking-tool-1024x521.png\",\"datePublished\":\"2017-12-19T17:00:47+00:00\",\"dateModified\":\"2023-05-16T06:03:13+00:00\",\"description\":\"There are tools available that can ease kick-off activities for CISOs, CIOs, and DPOs. These tools can help them better understand their GDPR compliance, including which areas are most important to be improved.\",\"breadcrumb\":{\"@id\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2017\/12\/19\/how-microsoft-tools-and-partners-support-gdpr-compliance\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2017\/12\/19\/how-microsoft-tools-and-partners-support-gdpr-compliance\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2017\/12\/19\/how-microsoft-tools-and-partners-support-gdpr-compliance\/#primaryimage\",\"url\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/\/wp-content\/uploads\/2017\/12\/Image-1-GDPR-benchmarking-tool-1024x521.png\",\"contentUrl\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/\/wp-content\/uploads\/2017\/12\/Image-1-GDPR-benchmarking-tool-1024x521.png\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2017\/12\/19\/how-microsoft-tools-and-partners-support-gdpr-compliance\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"How Microsoft tools and partners support GDPR compliance\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/#website\",\"url\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/\",\"name\":\"Microsoft Security Blog\",\"description\":\"Expert coverage of cybersecurity topics\",\"publisher\":{\"@id\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/#organization\",\"name\":\"Microsoft Security Blog\",\"url\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-content\/uploads\/2018\/08\/cropped-cropped-microsoft_logo_element.png\",\"contentUrl\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-content\/uploads\/2018\/08\/cropped-cropped-microsoft_logo_element.png\",\"width\":512,\"height\":512,\"caption\":\"Microsoft Security Blog\"},\"image\":{\"@id\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/#\/schema\/logo\/image\/\"}}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"How Microsoft tools and partners support GDPR compliance | Microsoft Security Blog","description":"There are tools available that can ease kick-off activities for CISOs, CIOs, and DPOs. These tools can help them better understand their GDPR compliance, including which areas are most important to be improved.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2017\/12\/19\/how-microsoft-tools-and-partners-support-gdpr-compliance\/","og_locale":"en_US","og_type":"article","og_title":"How Microsoft tools and partners support GDPR compliance | Microsoft Security Blog","og_description":"There are tools available that can ease kick-off activities for CISOs, CIOs, and DPOs. These tools can help them better understand their GDPR compliance, including which areas are most important to be improved.","og_url":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2017\/12\/19\/how-microsoft-tools-and-partners-support-gdpr-compliance\/","og_site_name":"Microsoft Security Blog","article_published_time":"2017-12-19T17:00:47+00:00","article_modified_time":"2023-05-16T06:03:13+00:00","og_image":[{"url":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/\/wp-content\/uploads\/2017\/12\/Image-1-GDPR-benchmarking-tool-1024x521.png","type":"","width":"","height":""}],"author":"Microsoft Security Team","twitter_card":"summary_large_image","twitter_misc":{"Written by":"Microsoft Security Team","Est. reading time":"6 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2017\/12\/19\/how-microsoft-tools-and-partners-support-gdpr-compliance\/#article","isPartOf":{"@id":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2017\/12\/19\/how-microsoft-tools-and-partners-support-gdpr-compliance\/"},"author":[{"@id":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/author\/microsoft-secure-blog-staff\/","@type":"Person","@name":"Microsoft Security Team"}],"headline":"How Microsoft tools and partners support GDPR compliance","datePublished":"2017-12-19T17:00:47+00:00","dateModified":"2023-05-16T06:03:13+00:00","mainEntityOfPage":{"@id":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2017\/12\/19\/how-microsoft-tools-and-partners-support-gdpr-compliance\/"},"wordCount":1397,"commentCount":0,"publisher":{"@id":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/#organization"},"image":{"@id":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2017\/12\/19\/how-microsoft-tools-and-partners-support-gdpr-compliance\/#primaryimage"},"thumbnailUrl":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/\/wp-content\/uploads\/2017\/12\/Image-1-GDPR-benchmarking-tool-1024x521.png","inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/www.microsoft.com\/en-us\/security\/blog\/2017\/12\/19\/how-microsoft-tools-and-partners-support-gdpr-compliance\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2017\/12\/19\/how-microsoft-tools-and-partners-support-gdpr-compliance\/","url":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2017\/12\/19\/how-microsoft-tools-and-partners-support-gdpr-compliance\/","name":"How Microsoft tools and partners support GDPR compliance | Microsoft Security Blog","isPartOf":{"@id":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2017\/12\/19\/how-microsoft-tools-and-partners-support-gdpr-compliance\/#primaryimage"},"image":{"@id":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2017\/12\/19\/how-microsoft-tools-and-partners-support-gdpr-compliance\/#primaryimage"},"thumbnailUrl":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/\/wp-content\/uploads\/2017\/12\/Image-1-GDPR-benchmarking-tool-1024x521.png","datePublished":"2017-12-19T17:00:47+00:00","dateModified":"2023-05-16T06:03:13+00:00","description":"There are tools available that can ease kick-off activities for CISOs, CIOs, and DPOs. These tools can help them better understand their GDPR compliance, including which areas are most important to be improved.","breadcrumb":{"@id":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2017\/12\/19\/how-microsoft-tools-and-partners-support-gdpr-compliance\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.microsoft.com\/en-us\/security\/blog\/2017\/12\/19\/how-microsoft-tools-and-partners-support-gdpr-compliance\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2017\/12\/19\/how-microsoft-tools-and-partners-support-gdpr-compliance\/#primaryimage","url":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/\/wp-content\/uploads\/2017\/12\/Image-1-GDPR-benchmarking-tool-1024x521.png","contentUrl":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/\/wp-content\/uploads\/2017\/12\/Image-1-GDPR-benchmarking-tool-1024x521.png"},{"@type":"BreadcrumbList","@id":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2017\/12\/19\/how-microsoft-tools-and-partners-support-gdpr-compliance\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/"},{"@type":"ListItem","position":2,"name":"How Microsoft tools and partners support GDPR compliance"}]},{"@type":"WebSite","@id":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/#website","url":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/","name":"Microsoft Security Blog","description":"Expert coverage of cybersecurity topics","publisher":{"@id":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/#organization","name":"Microsoft Security Blog","url":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-content\/uploads\/2018\/08\/cropped-cropped-microsoft_logo_element.png","contentUrl":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-content\/uploads\/2018\/08\/cropped-cropped-microsoft_logo_element.png","width":512,"height":512,"caption":"Microsoft Security Blog"},"image":{"@id":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/#\/schema\/logo\/image\/"}}]}},"msxcm_display_generated_audio":false,"distributor_meta":false,"distributor_terms":false,"distributor_media":false,"distributor_original_site_name":"Microsoft Security Blog","distributor_original_site_url":"https:\/\/www.microsoft.com\/en-us\/security\/blog","push-errors":false,"_links":{"self":[{"href":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-json\/wp\/v2\/posts\/75237","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-json\/wp\/v2\/users\/61"}],"replies":[{"embeddable":true,"href":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-json\/wp\/v2\/comments?post=75237"}],"version-history":[{"count":0,"href":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-json\/wp\/v2\/posts\/75237\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-json\/wp\/v2\/media?parent=75237"}],"wp:term":[{"taxonomy":"content-type","embeddable":true,"href":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-json\/wp\/v2\/content-type?post=75237"},{"taxonomy":"topic","embeddable":true,"href":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-json\/wp\/v2\/topic?post=75237"},{"taxonomy":"products","embeddable":true,"href":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-json\/wp\/v2\/products?post=75237"},{"taxonomy":"threat-intelligence","embeddable":true,"href":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-json\/wp\/v2\/threat-intelligence?post=75237"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-json\/wp\/v2\/tags?post=75237"},{"taxonomy":"author","embeddable":true,"href":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-json\/wp\/v2\/coauthors?post=75237"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}