This article provides steps for how to delete personal data from the device or service and can be used to support your obligations under the GDPR. If you’re looking for general info about GDPR, see the GDPR section of the Service Trust portal.
- Azure AD Premium P1, P2, EMS E3, or EMS E5 subscription.
- One of the following administrator accounts for the directory you want to configure:
- Global administrator
- Security administrator
- Conditional access administrator
Sign in to Azure as a Global administrator, Security administrator, or Conditional access administrator.
Click New terms.
Enter Display name. This is the header that users see when they sign in.
If you selected a custom conditional access template, then a new screen appears which allows you to customize the conditional access policy.
View report of who has accepted and declined
Click the numbers under Accepted or Declined to view the current state for users.
View Azure AD audit logs
To get started with Azure AD audit logs, use the following procedure:
Click View audit logs.
On the Azure AD audit logs screen, you can filter the information using the provided drop-down lists to target specific audit log information.
You can also click Download to download the information in a .csv file for use locally.
Sign in to https://myapps.microsoft.com.
In the upper right corner, click your name and select Profile from the drop-down.
Click Delete terms.
In the message that appears asking if you want to continue, click Yes.
Conditional access policies take effect immediately. When this happens, the administrator will start to see “sad clouds” or "Azure AD token issues". The administrator must sign out and sign in again in order to satisfy the new policy.
Users in scope will need to sign-out and sign-in in order to satisfy a new policy if:
Frequently asked questions
Q: How long is information stored?
A: The PDF is rendered by default as a JPEG, so hyperlinks are not clickable. Users have the option to select Having trouble viewing? Click here, which renders the PDF natively where hyperlinks are supported.
A: You can create a conditional access policy on the enterprise applications using modern authentication. For more information, see enterprise applications.
A: The user is blocked from getting access to the application. The user would have to sign in again and agree to the terms in order to get access.