Microsoft Releases Compliance Manager for Dynamics 365 Customers
In readiness for the General Data Protection Regulation (GDPR) coming into force, Microsoft has announced new features to help Dynamics 365 customers comply with this regulation.
Compliance Manager, previously released as a preview in November 2017, is now generally available for Dynamics 365 as well as Azure and Office 365 Business and Enterprise customers in public clouds.
A cross-Microsoft Cloud services solution, the Compliance Manager is designed to help organisations meet compliance obligations which includes GDPR, ISO 27001 and ISO 27018.
This reflects the shared responsibility of managing data in the cloud:
Microsoft Managed Controls detail the controls that Microsoft has implemented as a cloud service provider and how these have been verified by third party auditors.
Customer Managed Controls detail a list of controls that have been mapped to articles of the GDPR for customers to review and implement. These detail the actions needed and provide further information for GDPR compliance teams to assign actions, track progress and implement changes.
Compliance Score provides visibility into the current compliance status of each organisation with a risk-based score enabling users to check progress at a glance and carry out risk assessments. As new weighted control levels are applied this score will improve. Currently, available for Office 365, the compliance score feature will be rolled out to other Microsoft cloud services soon.