Simplify how you assess and manage compliance risk

Photograph of person in an office standing behind a large desk looking out window. On the desk are multiple monitors and a Surface Book along with multiple other traditional office tools and supplies.
Photograph of device screen with Compliance Manager interface displayed with graphics and information represented

Perform risk assessments with Compliance Manager

Compliance Manager is a Microsoft Cloud solution that helps you meet complex compliance obligations with ongoing risk assessments, actionable insights, and a simplified compliance process.

Compliance is a shared responsibility

It’s a shared responsibility to achieve compliance in the cloud. Microsoft implemented and tested controls that can help to meet your security, privacy, and compliance needs. As a customer, you are responsible to identify and maintain controls applying to your business and Microsoft provides resources to help you achieve this goal.

Photograph of two people standing and looking at a Surface Studio monitor, one is touching the screen
Photograph of three people seated at a table with a laptop talking

Cloud control framework

Over 1,900 controls in the Microsoft compliance framework enable us to stay up to date with the ever-evolving industry standards across geographies.

Risk assessments

Perform risk assessments on Microsoft cloud services. Get detailed information of our operations in addition to tools and guidance to assess and implement your own controls.

Photograph of people in a conference room, most are seated with laptops, one is standing and talking to the group
Photograph of person seated at a desk in a large open office working on a desktop computer

Independent audits

Microsoft is regularly audited and submits self-assessments to 3rd party auditors. They perform in-depth audits of the implementation and effectiveness of security, compliance, and privacy controls.

Compliance offerings

Microsoft gives you a comprehensive set of compliance offerings to help your organization comply with national, regional, and industry requirements governing the collection and use of customer data.

Photograph of two people sitting across from each other at a desk in an office talking, one has a Surface Book

Customer stories

Abrona prepares for GDPR with Microsoft

Abrona logo

“Today, we can assure our Board of Directors that we are taking all required steps to deploy a highly secure and compliant Office 365 solution. We consider Compliance Manager a fantastic product.”

Nick Postma, IT Manager, Information and Communication Technology Strategy

Stade de France secures data in the cloud

E-books and whitepapers

Simplify your compliance

Navigate data privacy landscape

See beyond the GDPR

Azure SOC 1

Read the Azure and Azure Government SOC 1 Type 2 report.

View report

Dynamics 365 SOC 1

Read the Dynamics 365 SOC 1 Type 2 report.

View report

Office 365 SOC 1

Read the Office 365 SOC 1 SSAE 16 Type II audit report.

View report

Azure SOC 2

Read the Azure and Azure Government SOC 2 Type 2 report.

View report

Dynamics 365 SOC 2

Read the Dynamics 365 SOC 2 AT 101 Type II audit report.

View report

Office 365 SOC 2

Read the Office 365 SOC 2 AT 101 Type II audit report.

View report

ISO 27001 and 27018

Read the ISO 27001 and 27018 audit assessment report for everything from Azure to Intune.

View report

Dynamics 365 ISO 27001

Read the Dynamics 365 (formerly Dynamics CRM) ISO 27001 audit assessment report 2017.

View report

Dynamics 365 ISO 27018

Read the Dynamics 365 ISO 27018 audit assessment report.

View report

Office 365 ISO 27001, 27018, 27017

Read the Office 365 ISO 27001, ISO 27018, and ISO 27017 audit assessment report.

View report

Azure security assessment

Read the Azure security assessment.

View assessment

Dynamics 365 security assessment

Read the Dynamics 365 Security assessment.

View assessment

Office 365 security assessment

Read the Office 365 security assessment.

View report

Office 365 management summary

Read the Office 365 architecture and audit reports management summary.

View report

Office 365 ISO FAQ

Read the Office 365 ISO 27001:2013 and ISO 27018:2014 aligned FAQ.

View report


Additional resources

Graphic icon of two clouds overlapping with one flowing into the other

Trust tools and documents

Assess our cloud services with more in-depth information in addition to help from Compliance Manager.

Graphic icon representing a guide with a checkmark on the cover

Compliance guides

Get in-depth guidance on how to meet specific compliance requirements in regions and industries.

Graphic icon representing an architect’s triangle and ruler

Azure Blueprints

Find guidance on building cloud-powered applications that comply with GDPR, PCI-DSS, HIPAA and more.

Graphic icon of a rectangle with a shield and a horizontal line on the front

Compliance Manager walkthrough

Learn how to use Compliance Manager with this step-by-step interactive guide.

Graphic icon of a magnifying glass

Data privacy resources

See how Microsoft supports your GDPR accountability including DPIAs, DSRs, and data breach.

Graphic icon representing three stacked boxes with three checkmarks

Compliance in Asia

Get a better understanding of legal and regulatory compliance in Asia.

Assess and manage your compliance risk