Microsoft Azure and GDPR – How can MS Azure ease your journey to GDPR compliance?

Providing clarity and consistency for the protection of personal data

The General Data Protection Regulation (GDPR) imposes new rules on organizations in the European Union (EU) and those that offer goods and services to people in the EU, or that collect and analyze data tied to EU residents, no matter where they are located.

  • Enhanced personal privacy rights
  • Increased duty for protecting data
  • Mandatory breach reporting
  • Significant penalties for non-compliance


Why Microsoft?

Microsoft is the industry leader in privacy and security with extensive expertise complying with complex regulations. We take a principled approach with strong commitments to privacy, security, compliance and transparency.

Moving to the cloud makes it easier for you to become compliant with privacy regulations by managing and protecting personal data in a centralized location.

Microsoft’s commitment to its users worldwide

    • To simplify your path to compliance, Microsoft will be GDPR-compliant across our cloud services when enforcement begins on May 25, 2018.
    • We will share our experience in complying with complex regulations such as the GDPR.
    • Together with our partners, we are prepared to help you meet your policy, people, process, and technology goals on your journey to GDPR.


Make no mistake, the GDPR sets a new and higher bar for privacy rights, for security, and for compliance

“Make no mistake, the GDPR sets a new and higher bar for privacy rights, for security, and for compliance.

And while your journey to GDPR may seem challenging, Microsoft is here to help all of our customers around the world.”

Brad Smith
President & Chief Legal Officer | Microsoft Corporation



The Cloud is Trusted

Azure has the deepest and most comprehensive compliance coverage in the industry

“Businesses and users are going to embrace technology only if they can trust it.”the cloud is trusted

Satya Nadella
Chief Executive Officer | Microsoft Corporation


Important Definitions

Personal Data
Any information related to an identified or identifiable natural person including direct and indirect identification. Examples include:

  • Name
  • Identification number (e.g., SSN)
  • Location data (e.g., home address)
  • Online identifier (e.g., e-mail address, screen names, IP addresses, device IDs)


Sensitive personal data

Personal data afforded enhanced protections:

  • Genetic data (e.g., an individual’s gene sequence)
  • Biometric Data (e.g., fingerprints, facial recognition, retinal scans)
  • Sub categories of personal data including:
    • Racial or ethnic origin
    • Political opinions, religious or philosophical beliefs
    • Trade union membership
    • Data concerning health
    • Data concerning a person’s sex life or sexual orientation