Microsoft vows GDPR compliance in all cloud services when enforcement of the new EU data privacy regulation begins in May 2018, but companies still must take action to avoid fines.
With less than 15 months left before companies around the world must comply with the EU`s strict new General Data Protection Regulation, Microsoft has promised it will be compliant with GDPR across all cloud services by the deadline in 2018.
Once GDPR enforcement begins in the EU, companies that collect, store or process data related to any EU resident will be required to comply with the new regulation, or they`ll face significant penalties. GDPR compliance will be mandatory for companies located anywhere in the world, and the global nature of the cloud means many companies may be unaware of their need to comply.
Brendon Lynch, Microsoft`s chief privacy officer, called GDPR "the most significant change to European Union (EU) privacy law in two decades," in a blog post. "Complying with the GDPR will not be easy. To simplify your path to compliance, Microsoft is committing to be GDPR-compliant across our cloud services when enforcement begins on May 25, 2018."
Lynch wrote that Microsoft is committed to principles of cloud trust, including "security, privacy, transparency and compliance."
However, moving operations to Microsoft cloud services will be only part of the solution for companies wishing to attain EU GDPR compliance. "While Microsoft is committed to helping you successfully comply with the GDPR, it is important to recognize that compliance is a shared responsibility," Lynch wrote. GDPR compliance will require companies to take steps to meet the regulation`s new requirements, including "greater data access and deletion rules, risk assessment procedures, a data protection officer role for many organizations and data breach notification processes."
"Microsoft is to be commended, not only for its recent announcement on GDPR compliance, but also... Read More »