“To help you get ahead of the ever-evolving compliance landscape, we’re excited to announce several new assessments available in the public preview of Microsoft Compliance Score,” said senior director of Microsoft 365 Alym Rayani in a blog post. “Leveraging a team of data protection experts using a common control framework of more than 1,000 controls, we built unique insights into Microsoft Compliance Score.” The company previously announced that it would extend CCPA’s conditions to all of its customers, and it’s helping its customers do the same. An assessment score will tell users the percentage to which they meet various requirements, letting them quickly identify areas of weakness. The same applies to Brazi’s Lei General de Proteção de Dados, which will go live in August. In this case, companies with customers in the country must ensure they’re compliant before then, so the availability is even more important. Once you run a check, the Compliance Score Tool will recommend actions.
ISO and SOC
The privacy legislation support is joined by support for new ISO and SOC standards. ISO/IEC 27701:2019 was published recently to “reconcile multiple privacy regulatory requirements”, including GDPR. SOC 1 and SOC 2 Type 2 focus instead on the privacy and security in the cloud. The framework helps companies publish reports to auditors and Compliance Score will get them started on their journey. You can find more information about the additions on the Microsoft blog.