To help organizations comply with national, regional, and industry-specific requirements governing the collection and use of individuals’ data, Microsoft offers the most comprehensive set of certifications and attestations of any cloud service provider.
Microsoft Azure is certified by the China Electronics Standardization Institute as compliant with GB 18030, the encoding standard mandated by the Chinese government for the Chinese ideographic character set. Learn more (Chinese)
Microsoft Azure operated by 21Vianet adheres to Multi-Level Protection Scheme, a Chinese state cloud security standard issued by the Ministry of Public Security.Learn more (Chinese)
Microsoft and its controlled U.S. subsidiaries comply with the EU-US Privacy Shield Framework as set forth and certified to the US Department of Commerce regarding the collection, use, and retention of personal information transferred from the European Union to the United States.
FedRAMP is mandatory for cloud services used by U.S. federal agencies. Azure maintains a FedRAMP P-ATO at the Moderate Impact Level, and Azure Government has received a P-ATO at the High Impact Level. Dynamics CRM Online Government and Office 365 U.S. Government have received FedRAMP ATOs at the Moderate Impact Level.
Microsoft was the first global CSP to receive MTCS 584:2013 certification across all three MTCS security levels. Furthermore, Microsoft Azure services (IaaS and PaaS) and Microsoft Office 365 services (SaaS) were certified at Level 3 and Microsoft Dynamics CRM Online services (SaaS) were certified at Level 2.
Service Organization Controls (SOC) are a series of accounting standards that measure the control of financial information for a service organization. Azure’s SOC 1 and SOC 2 Type 2 audit reports attest to the effectiveness of the design and operation of its security controls.
Microsoft Azure, Microsoft Dynamics CRM Online, and Microsoft Office 365 have implemented the security measures in the Argentina Personal Data Protection Act. Learn more (Spanish)
Azure operated by 21Vianet in China has passed the Trusted Cloud Service certification developed by the Data Center Alliance and tested by the China Academy of Information and Communications Technology. Learn more (Chinese)