Resources
Additional resources containing Microsoft Professional Services privacy and data protection information.
Resources
Microsoft Professional Services data protection white paper
Overview of how Microsoft Services addresses security and privacy challenges.
Subprocessors and data privacy white paper
How Microsoft handles data in the cloud.
Microsoft Professional Services Data Protection Addendum (MPSDPA)
Data protection terms for Microsoft Unified, Premier and Consulting customers.
Microsoft Professional Services Limited Data Protection Addendum (MPSLDPA)
Data protection terms for preview, pilot, beta, and limited release offers.
Online Services Terms (OST)
Terms for how you can use an online service are defined in the Volume Licensing Online Services Terms (OST) document and program agreement.
Microsoft Online Services Data Protection Addendum
Data protection terms for Online Services.
Resources that require authentication
Customers must login to the Microsoft Service Trust Portal with their Microsoft Account (MSA) for access.
Standard responses to requests for information
Responses to common questions and inquiries.
ISO/IEC 27001:2013 & 27018 assessment report
Third-party independent audit assessment report verifying our compliance with ISO standards - 27001 and 27018 requirements.
Microsoft Global Services Center IGD ISO/IEC 27001:2013 assessment report
Third-party independent audit assessment report verifying our compliance with ISO standards - 27001 and 27018 requirements for Hyderabad, Bengaluru, Charlotte, Warsaw, and Bucharest.
Microsoft Professional Services data access summary
Overview of different means by which Microsoft personnel may access customers' data (e.g. data transfer, remote access).
Microsoft support and consulting data classification summary
Overview of data classification definitions used internally by Microsoft Services for the protection of data.
Handling customer content Q&A brief
Provides critical information on using data transfer and management (DTM) to ensure customers' sensitive or highly confidential data or content is protected at the right level.
Microsoft Professional Services HITRUST control mapping
Control mappings focused on HITRUST obligations. The key links between Microsoft Services UCF and HITRUST are its mappings to ISO 27001, 27002, GDPR, and HIPAA.