Sensitive personal data can be contained in email messages, documents, spreadsheets, notes, and local databases, and saved in individual cloud storage accounts. Restricting access to that data is an important element in protecting the privacy of individuals. Office 365 incorporates privacy by design, and Microsoft has robust policies, controls, and systems built into Office 365 to help keep personal data private.
Compliance is an on-going process and a shared responsibility. Microsoft is investing in additional features and functionality to help organizations achieve their GDPR compliance goals. Whether you’re a compliance officer, a decision-maker considering Office 365 as a business productivity solution, a current Office 365 administrator seeking help with a specific GDPR-compliant implementation, or an interested party looking for general information on how the GDPR relates to Office 365 and related products, the information here can provide a starting point for your journey.