Compliance Program for Microsoft Cloud

Connect with subject matter experts to support your internal and external risk, audit, and compliance teams and accelerate your cloud adoption.

Accelerate your cloud adoption with proactive compliance assurance

Identify regulatory challenges

Understand how regulatory changes and cyberthreats affect your cloud environment.

Assess risk proactively

Evaluate your cloud estate’s risk, compliance, and privacy requirements.

Minimize threats continually

Gain insight through continuous risk analysis and oversight across your hybrid cloud estate.

Simplify your move to the cloud

A person holding up a laptop to show two coworkers information that is being displayed.

Ask an expert

Direct one on one engagement with Microsoft experts to support risk stakeholders to accelerate assessments and approval cycles.

A person wearing headphones and working at a desk with two laptops and multiple screens.

Risk and control mapping

Receive support from Microsoft experts to complete a fixed number of risk assessment questionnaires.

A person working at a desk with multiple screens.

Compliance community

Learn about the most recent regulatory compliance developments directly from Microsoft experts, regulators, and industry peers.

A person at a desk that has two desktop monitors.

Proactive risk assurance

Proactive communication on external audit results, updates to Microsoft Cloud estate, changing regulatory compliance requirements, and industry related cloud technologies including third party risk management news.

A person holding up a laptop to show two coworkers information that is being displayed.

Ask an expert

Direct one on one engagement with Microsoft experts to support risk stakeholders to accelerate assessments and approval cycles.

A person wearing headphones and working at a desk with two laptops and multiple screens.

Risk and control mapping

Receive support from Microsoft experts to complete a fixed number of risk assessment questionnaires.

A person working at a desk with multiple screens.

Compliance community

Learn about the most recent regulatory compliance developments directly from Microsoft experts, regulators, and industry peers.

A person at a desk that has two desktop monitors.

Proactive risk assurance

Proactive communication on external audit results, updates to Microsoft Cloud estate, changing regulatory compliance requirements, and industry related cloud technologies including third party risk management news.

Learn more about the Compliance Program

Key considerations

Explore documentation

Join the community

More information

Additional resources

Microsoft compliance

Review Microsoft compliance offerings and service assurance documentation.

Learning path

Understand Microsoft security, compliance, and privacy fundamentals.

Service Trust Portal

Explore content, tools, and resources including audit reports and vulnerability assessments.

Compliance Manager

Access 300 pre-built assessments for common industry and regional regulations.

Frequently asked questions

|

Organizations using hybrid cloud services often face challenges when assessing risks and meeting regulatory compliance requirements. The Compliance Program for Microsoft Cloud is a fee-based premium program offering personalized executive support to address these challenges along with education and networking opportunities.

Previously, the financial services industry compliance program was only open to enterprises in the financial services industry as defined in the Financial Services Amendment. Based on this foundation, Microsoft now supports all enterprises with enhanced features in addition to right-to-audit.

No. Microsoft will not provide legal advice or representations of your compliance. Conversations will focus on topics where you believe you might be unable to use the cloud based on new or evolving regulations.

Round tables are sessions held for specific purposes, typically with smaller groups, that allow us to focus on particular needs only affecting a smaller group. Office hours typically occur bi-monthly and focus on topics that would be useful to everyone. The compliance community consists of round tables or office hours but focuses on a specific industry and includes events such as the annual summit.

It depends on the complexity of the question and the information available. The Compliance Program team works diligently to complete these inquiries as quickly as possible.

No, the Compliance Program is offered as a paid package.

Yes, the program is designed to cover all Microsoft cloud services and isn’t priced by individual cloud services.

No, you don’t need to be a member of the Compliance Program to exercise your right to audit. However, by becoming a member, you can receive assistance from a group of Microsoft experts with their assessments and will have access to confidential artifacts, which may reduce your need for an audit.

Talk to your account team for transition options from the financial services industry compliance program to the Compliance Program for Microsoft Cloud.

Most features are new or enhanced, including risk and control mapping and proactive risk assurance. Additionally, Microsoft provides a personal touch that most of competitors don’t offer.

No. You must be a member of the Compliance Program to be invited to the summit. The summit is not available as a fee-based offering.

The R2A and R2E clauses remain in place and have been addressed in the Online Service Terms (OST) and Data Protection Addendum (DPA) contract stack as well as industry-specific agreements.

Compliance Program for Microsoft Cloud