Please download to get full document.

View again

of 16

General Data Protection Regulation (GDPR)

1. Empower every person and every organization on the planet to achieve more. Our mission Our ambitions Data is driving innovation Data privacy is driving…
11 views16 pages
All materials on our website are shared by users. If you have any questions about copyright issues, please report us to resolve them. We are always happy to assist you.
Documenttranscript
  • 1. "Empower every person and every organization on the planet to achieve more." Our mission Our ambitions Data is driving innovation Data privacy is driving trust
  • 2. Your data, powering your experiences, controlled by you. Microsoft Privacy Microsoft Privacy Principles
  • 3. Approach to privacy governance
  • 4. Privacy program structure Centralized Engineering & Services Human Resources Finance Operations & IT Sales & Marketing Each divisional group has: • Accountable Executive • Privacy Program Owner(s) • Privacy Managers • General Contractor (for engineering work)
  • 5. Consumer privacy solutions
  • 6. TRANSPARENCY SECURITY COMPLIANCE PRIVACY Principles for how we manage your data Enterprise privacy solutions
  • 7. We will ensure that all your data is secure We spend over $1 billion a year on cybersecurity. 3,500+ security professionals work to secure datacenters and hunt down attackers. We block more than 5 billion distinct malware threats per month.
  • 8. We will ensure your data is private and is under your control We used GDPR as a catalyst for broader efforts to improve data handling globally. We have brought 4 privacy lawsuits against the U.S. government to protect customer privacy rights. We build privacy into our services as part of the Microsoft Security Development Lifecycle. Brad Smith, President and Chief Legal Officer
  • 9. Preparing for the GDPR just got easier Get ready for GDPR compliance and protect sensitive data residing in hybrid environments across the cloud and on-premises. Discover how new features in Microsoft 365 help you secure personal data and meet strict GDPR privacy requirements. Get the latest on GDPR compliance > Compliance Simplified Control management, integrated task assignment, evidence collection, and audit-ready reporting tools to streamline your compliance workflow. LAUNCH COMPLIANCE MANAGER > We will be transparent about the collection and the uses of data We provide geographic locations where customer data is stored. We provide visibility into what we do with customer data, how we protect it, and how they are in control. We publish the number of legal demands for customer data that we receive from law enforcement agencies.
  • 10. We will manage your data in accordance with the law of the land microsoft.com/en-us/trustcenter/compliance/complianceofferings Global  ISO 27001:2013  ISO 27017:2015  ISO 27018:2014  ISO 22301:2012  ISO 9001:2015  ISO 20000-1:2011  SOC 1 Type 2  SOC 2 Type 2  SOC 3  CSA STAR Certification  CSA STAR Attestation  CSA STAR Self- Assessment  WCAG 2.0 (ISO 40500:2012) Regional  Argentina PDPA  Australia IRAP Unclassified  Australia IRAP PROTECTED  Canada Privacy Laws  China GB 18030:2005  China DJCP (MLPS) Level 3  China TRUCS / CCCPPF  EN 301 549  EU ENISA IAF  EU Model Clauses  EU – US Privacy Shield  GDPR  Germany C5  Germany IT- Grundschutz workbook  India MeitY  Japan CS Mark Gold  Japan My Number Act  Netherlands BIR 2012  New Zealand Gov CC Framework  Singapore MTCS Level 3  Spain ENS  Spain DPA  UK Cyber Essentials Plus  UK G-Cloud  UK PASF US Gov  FedRAMP High  FedRAMP Moderate  EAR  DFARS  DoD DISA SRG Level 5  DoD DISA SRG Level 4  DoD DISA SRG Level 2  DoE 10 CFR Part 810  NIST SP 800-171  NIST CSF  Section 508 VPATs  FIPS 140-2  ITAR  CJIS  IRS 1075 Industry Industry  PCI DSS Level 1  GLBA  FFIEC  Shared Assessments  FISC (Japan)  APRA (Australia)  FCA (UK)  MAS + ABS (Singapore)  23 NYCRR 500  HIPAA BAA  HITRUST  21 CFR Part 11 (GxP)  MARS-E  NHS IG Toolkit (UK)  NEN 7510:2011 (Netherlands)  FERPA  CDSA  MPAA  DPP (UK)  FACT (UK)  SOX We have the most comprehensive compliance coverage in the industry. We committed to sharing our experiences in complying with complex regulations. We make several resources available to help our customers along their Compliance journey.
  • 11. Future proof customers’ organizations Trained our people Enhanced our privacy processes Invested in technology Actions we took as part of our commitment to GDPR compliance to the benefit of our customers At Microsoft, we are deeply committed to privacy. In 2000, we established our first corporate privacy function, laying the foundation of people, process and technology investments for what is now a broad privacy governance program across Microsoft. -Brendon Lynch, Microsoft Chief Privacy Officer
  • 12. GDPR documentation on the Microsoft Trust Center The Microsoft Trust Center provides a focus on compliance with special attention to data subject rights, breach notifications, and authoring Data Protection Impact Assessments (DPIAs)
  • Advertisement
    MostRelated
    View more
    We Need Your Support
    Thank you for visiting our website and your interest in our free products and services. We are nonprofit website to share and download documents. To the running of this website, we need your help to support us.

    Thanks to everyone for your continued support.

    No, Thanks
    SAVE OUR EARTH

    We need your sign to support Project to invent "SMART AND CONTROLLABLE REFLECTIVE BALLOONS" to cover the Sun and Save Our Earth.

    More details...

    Sign Now!

    We are very appreciated for your Prompt Action!

    x