Office 365 Security & Compliance Center

  • 4 minutes to read
  • Contributors
    • Shari Kjerland
    • Prabita
    • Brendon Bennett
    • Peter Baumgartner
    • v-rajagt

The Office 365 Security & Compliance Center is designed to help you manage compliance features across Office 365 for your organization. Links to existing SharePoint and Exchange compliance features bring together compliance capabilities across Office 365.

Note

Currently, many of the compliance features are still accessible through service-specific management interfaces, such as the Exchange admin center (EAC). However, this will change in the future as more service-independent compliance features are added to the Security & Compliance Center.

Security & Compliance Center availability for Business and Enterprise plans
Feature
Office 365 Business Essentials
Office 365 Business Premium
Office 365 Enterprise E1
Office 365 US Government G1
Office 365 Enterprise E3
Office 365 US Government G3
Office 365 Enterprise E5
Office 365 Enterprise F1
Office 365 US Government F1
Access to the Security & Compliance Center
Yes
Yes
Yes
Yes
Yes
Yes
Office 365 Cloud App Security
No
No
No
No
Yes
No
Threat management such as mail filtering and anti-malware
Yes
Yes
Yes
Yes
Yes
Yes
Advanced threat management such as customer lockbox and threat explorer for phishing campaigns 6
No
No
No
No
Yes
No
Mobile device management
Yes
Yes
Yes
Yes
Yes
Yes
Data loss prevention for Exchange Online, SharePoint Online, and OneDrive for Business
No
No
No
Yes
Yes
No
Data loss prevention for Microsoft Teams chat and channel conversations
No
No
No
No
Yes
No
Data governance1
Yes
Yes
Yes
Yes
Yes
Yes
Advanced data governance2
No
No
No
No
Yes
No
Search and investigation
Yes
Yes
Yes
Yes
Yes
Yes
eDiscovery search
Yes
Yes
Yes
Yes
Yes
Yes
eDiscovery export
No
No
No
Yes
Yes
No
eDiscovery holds (including query-based eDiscovery holds)
No
No
No
Yes
Yes
No
Advanced eDiscovery5
No
No
No
No
Yes
No
Archiving
Yes3
Yes3
Yes3
Yes4
Yes4
No
Manual retention/deletion policies
No
No
No
Yes
Yes
No

1 Data governance enables users to create, publish, and manually apply labels to documents; import data using drive shipping or over the network; and create and apply retention/deletion policies across workloads, users, and groups. Retention policies applied to mailboxes require Office 365 Enterprise E3 or E5.
2 Advanced data governance allows you to retain important information and delete unimportant information by classifying information based on a retention or deletion policy or both. It includes intelligent/automated actions such as recommending policies, automatically applying labels to data, applying labels based on sensitive data types or queries, disposition review, and use of smart import filters. It also includes the Supervision feature for reviewing employee communications for security and compliance purposes.
3 50 GB limit.
4 Unlimited.
5 Advanced eDiscovery is supported in the United States and in the Western Europe (Netherlands) region. (Customer data from Canada and Asia Pacific is exported to the United States. Customer data from Europe, the Middle East, and Africa is exported to Western Europe [Netherlands].)
6 Advanced Threat Protection is available in Office 365 Enterprise E5 and as a standalone service for Office 365 Enterprise E1 and Office 365 Enterprise E3.

Security & Compliance Center availability for Standalone plans
Feature
Exchange Online Plan 1
Exchange Online Plan 2
Exchange Online Kiosk
SharePoint Online Plan 1
SharePoint Online Plan 2
Skype for Business Online Plan 1
Skype for Business Online Plan 2
Access to the Security & Compliance Center
Yes
Yes
Yes
Yes
Yes
Yes
Yes
Office 365 Cloud App Security
No
No
No
No
No
No
Yes
Threat management such as mail filtering and anti-malware
Yes
Yes
Yes
Yes
Yes
Yes
Yes
Advanced threat management such as customer lockbox and threat explorer for phishing campaigns
No
No
No
No
No
No
No
Mobile device management
Yes
Yes
Yes
Yes
Yes
Yes
Yes
Data loss prevention
No
Yes
No
No
Yes
No
Yes
Data governance1
Yes2
Yes
Yes
Yes
Yes
Yes
Yes
Advanced data governance3
No
No
No
No
No
No
No
Search and investigation
Yes
Yes
Yes
Yes
Yes
Yes
Yes
eDiscovery search
Yes
Yes
Yes
Yes
Yes
No
No
eDiscovery export
No
Yes
No
No
Yes
No4
No4
eDiscovery holds (including query-based eDiscovery holds)
No
Yes
No
No
Yes
No
No
Advanced eDiscovery5
No
No
No
No
No
No
No
Archiving6
Yes
Yes
No
Yes
Yes
No
No
Manual retention/deletion policies
No
Yes
Yes
No
Yes
No
Yes

1 Data governance enables users to create, publish, and manually apply labels to documents; import data using drive shipping or over the network; and create and apply retention/deletion policies across workloads, users, and groups. Retention policies applied to mailboxes require Office 365 Enterprise E3 or E5.
2 Requires purchase of Exchange Online Archiving add-on.
3 Advanced data governance allows you to retain important information and delete unimportant information by classifying information based on a retention or deletion policy or both. It includes intelligent/automated actions such as recommending policies, automatically applying labels to data, applying labels based on sensitive data types or queries, disposition review, and use of smart import filters. It also includes the Supervision feature for reviewing employee communications for security and compliance purposes.
4 Skype conversations are stored as part of the mailbox.
5 Advanced eDiscovery requires Office 365 Enterprise E5 or an add-on license.
6 Skype Archiving is within the user's mailbox.

Security & Compliance Center availability in Office 365 operated by 21Vianet

The Security & Compliance Center is not available in any plans for Office 365 operated by 21Vianet.

Security & Compliance Center availability in Office 365 Germany

The Security & Compliance Center is available for Office 365 Germany. For information about Office 365 Germany, see Office 365 Germany.