Azure receives ISO/IEC 27701 privacy certification, Microsoft reports

January 16 2020

Microsoft announced that Azure is the first cloud provider in the US to receive the ISO/IEC 27701 Privacy Information Management System (PIMS) data processing certification. The certification indicates compliance with privacy regulations and paves the way for more customers to build on Azure. Microsoft previously achieved compliance with EU Model clauses and GDPR.

The PIMS standard helps to integrate security and privacy controls and a PIMS audit maps requirements to meet California Consumer Privacy Act and GDPR. Unlike traditional GDPR compliance, PIMS offers a framework for both data processors and controllers.

"Modern business is driven by digital transformation, including the ability to deeply understand data and unlock the power of big data analytics and AI. But before customers – and regulators – will allow you to leverage this data, you must first win their trust. Microsoft simplifies this privacy burden with tools that can help you automate privacy, including built-in controls like PIMS," wrote David Burt, Microsoft senior compliance manager, in a statement.

"Microsoft has longstanding commitments to privacy, and we continue to take steps to give customers more control over their data. Our Trusted Cloud is built on our commitments to privacy, security, transparency, and compliance, and our Trust Center provides access to validated audit reports, data management capabilities, and information about the number of legal demands we received for customer data from law enforcement," he added.

FREE Membership Required to View Full Content:

Become a MemberLogin
Joining gives you free, unlimited access to news, analysis, white papers, case studies, product brochures, and more, and it’s all FREE. You’ll also have the option to receive periodic email newsletters with the latest relevant articles and content updates. Learn more about us here
About MSDW Reporter

More about MSDW Reporter