Azure, Dynamics 365, and Windows accountability readiness checklist for the GDPR

To support the General Data Protection Regulation (GDPR) when using Microsoft Azure and Dynamics 365, use the set of privacy and security controls for personal data processors:

• ISO/IEC 27701 standard for privacy management requirements
• ISO/IEC 27001 standard for security techniques requirements

Microsoft Azure and Dynamics 365 services are certified to ISO 27701 (PIMS).

The Windows diagnostic data processor configuration takes advantage of the Enterprise Data Platform service within the Azure cloud service infrastructure. It is subject to the same set of privacy and security controls, and certification referenced above.