GDPR Report

  • The GDPR sets new standards in transparency, accountability, and record-keeping. You will need to be more transparent about not only how you handle personal data, but also how you maintain documentation that defines your processes and use of personal data. Organizations that process personal data need to keep records about the purposes of processing; the categories of personal data processed; the identity of third parties with whom data is shared; whether (and which) third countries receive personal data, and the legal basis of such transfers; organizational and technical security measures; and data retention times that apply to various datasets. One way to achieve this is by using auditing tools, which can help ensure that any processing of data—whether it be collection, use, sharing, or otherwise—is tracked and recorded.
  • Recommended products and services Microsoft cloud services centralize and streamline technical and administrative steps that are required for compliance, such as demonstrating due diligence and handling data access requests. Microsoft recommends the following products and services to help your organization meet the GDPR requirements in the Report phase.
  • Microsoft Trust Center feature: Service Trust Platform
  • Microsoft Azure features: Azure auditing and logging, Azure Monitor
  • Enterprise Mobility + Security (EMS) feature: Azure Information Protection
  • Dynamics 365 feature: Reporting and analytics
  • Office and Office 365 features: Service Assurance, Office 365 audit logs, Customer Lockbox
  • Windows and Windows Server feature: Windows Defender Advanced Threat Protection