Data protection - Discover our trust principles
Data protection
Discover our trust principles.

Microsoft Dynamics CRM Trust Center

As a Microsoft Dynamics CRM Online customer, you have entrusted Microsoft to help protect your data. Microsoft values this trust and cares deeply about the privacy and security of your data. We strive to take a leadership role in industry privacy, security, and compliance practices through the following trust principles.

The Cloud Security Alliance suggests that every customer ask their cloud service provider a broad range of security and privacy questions. Because your trust is important to us, we have proactively answered these questions. We also have additional information about the products that are covered by the Trust Center content.

Get started
1-888-477-7989
Chat
BuyBuy
Free trialFree trial

Your privacy matters

We respect the privacy of your data.

No advertising

Microsoft Dynamics CRM Online does not build advertising products out of customer data. We don’t scan your documents or files for building analytics, data mining, or advertising.

No mingling

Microsoft Dynamics CRM Online always allows you to keep your customer data separate from other customers' data. We provision you with your own database to maximize the security and integrity of your data.

Learn about data use limits

Data portability

Microsoft Dynamics CRM Online customer data belongs to the customer. You can remove your data whenever you choose.

Download privacy white paper

Leadership in transparency

As a Microsoft Dynamics CRM Online customer, you know where your data resides, who can access it, and what we do with it.

Where

You know where the Microsoft major data centers and personnel are located and the logic used to determine where your data is stored.

Learn about geographic
boundaries

Who and what

We offer clear information on who can access your Microsoft Dynamics CRM Online customer data and under what circumstances they access it.

Learn about
administrative access

How

Microsoft notifies you, if requested, about changes in our service operations.

Learn about third parties
Learn more about how Microsoft is committed to help you comply with your regulatory requirements
Holistic data-center efficiency

Independently verified

Compliance with world-class industry standards is verified by third parties.

Certified for ISO 27001

ISO 27001 is one of the best security benchmarks available across the world.

EU Model Clauses

In addition to EU Safe Harbor, Microsoft Dynamics CRM Online will sign the standard contractual clauses created by the European Union (called the "EU Model Clauses") which address international transfer of data. Request a signed copy of the EU Model Clauses from Microsoft.

HIPAA-Business Associate Agreement*

Microsoft Dynamics CRM Online will sign requirements for the Health Insurance Portability and Accountability Act-Business Associate Agreement (HIPAA-BAA) with customers upon request. HIPAA is a U.S. law that applies to healthcare entities, such as doctors' offices, which the law calls covered entities. HIPAA governs the use, disclosure, and safeguarding of protected health information (PHI) and imposes requirements on covered entities to sign business associate agreements with their vendors that use and disclose PHI. Request a signed copy of HIPAA-BAA.

Data processing agreement*

Microsoft offers customers a comprehensive standard data processing agreement that addresses privacy, security, and handling of customer data. Our standard data processing agreement enables customers to comply with their local regulations.

Learn about security audits
and certifications

Learn more about how Microsoft Dynamics CRM Online meets world-class industry standards.

Learn more about
regulatory compliance

* Applicable to Microsoft Dynamics CRM Online customers who manage their online services through the Microsoft Online Services Portal.

Compliance framework
for online services

Relentless on security

We offer excellence in cutting-edge security practices.

Deep experience

We have developed our practices and policies as a result of more than 15 years of experience in providing security for online data.

Security Development Lifecycle

The Microsoft Security Development Lifecycle helps ensure that security and privacy is incorporated by design from software development through service operations.

Security and service
continuity guide

Five layers of security

Data is secured in five different layers: data, application, host, network, and physical.

Standardized request
responses

Proactive monitoring

We proactively monitor to help identify potential unknown threats by predicting malicious behavior and monitoring for irregular events that may indicate threats.

Securing the cloud
infrastructure

Access restriction

Access to production servers is restricted to a small list of operations personnel.

Information security
management

Take the next steps

More details

Find a partner to expedite your progress using Microsoft Dynamics CRM.

Blog insights

Hear from CRM experts on topics ranging from product strategy to maximizing your use of features.

Free 30-day trial

Try Microsoft Dynamics CRM free with no payment information or software installation.

Visit Marketplace
Read our blog
Get started

Like us on Facebook

Stay in touch with
Microsoft Dynamics.

Let's get social

Facebook
Twitter
LinkedIn
YouTube

Support

Customers

Partners