 "Office 365 Now Compliant With EU And US Security Standards")
Microsoft Corp. has announced that Office 365, the company’s next-generation cloud productivity service, is the first and only major cloud-based platform to offer leading information privacy and security standards for customers operating in the European Union and United States. As part of its contractual commitment to customers, Microsoft will now sign the EU’s Model Clauses, which will help customers certify compliance with the European Commission’s stringent Data Protection Directive, and the U.S.-mandated Health Insurance Portability and Accountability Act (HIPAA).
Microsoft also announced the availability of the Office 365 Trust Center. The site provides in-depth information about the privacy and security practices for Office 365 and was recently redesigned to be more accessible and easy to understand.
In February 2010, the EU released these standard contractual clauses (commonly referred to as “Model Clauses”) to legitimise the transfer of personal data via international networks to locations outside the European Economic Area (EEA). When included in service agreements with data processors, the Model Clauses assure customers that they have taken appropriate steps to safeguard personal data, even if it is stored in a cloud-based service center located outside the EEA. European regulators have the option to request that customers halt the use of a service that hasn’t taken appropriate steps to safeguard personal data until they have evaluated the service and deemed it compliant with EU data protection and security standards.
Along with furnishing the Model Clause provisions, Microsoft has gone a step further than other cloud providers to include a data processing agreement for EU customers. Some of the 27 member states have more exacting requirements than those of the EU-wide Data Protection Directive. To streamline the use of cloud-based services for customers operating under additional compliance requirements, Microsoft has included with the Model Clause provisions a robust data processing agreement that was developed in view of the specifics of member-state regulations.
“Developing cloud based productivity tools that meet the needs of European businesses means more than simply building apps in a browser,” said Jean-Philippe Courtois, President, Microsoft International. “Microsoft has a more complete approach to European data protection and security laws than any other company, and we’re proud of the work we’ve done to ensure the widest range of organisations can move to the cloud with confidence – or choose an equally functional on-premises option,” he added.
As the first major cloud-based productivity service to obtain certification under ISO/IEC 27001, a rigorous information security management benchmark, Microsoft submits to a yearly audit of its information security policy by an independent expert and shares the results with its customers. Additionally, Microsoft has developed its online services to provide physical, administrative and technical safeguards that facilitate full compliance with HIPAA requirements.
 "Israel targets top Hamas leaders in Doha; Qatar, Iran condemn strike as violation of sovereignty")
 "Nepal: Oli to continue until new PM is sworn in, nation on edge as all branches of govt torched")
 "Who is CP Radhakrishnan, India's next vice-president?")
 "Israel informed US ahead of strikes on Hamas leaders in Doha, says White House")
 "Israel targets top Hamas leaders in Doha; Qatar, Iran condemn strike as violation of sovereignty")
 "Nepal: Oli to continue until new PM is sworn in, nation on edge as all branches of govt torched")
 "Who is CP Radhakrishnan, India's next vice-president?")
 "Israel informed US ahead of strikes on Hamas leaders in Doha, says White House")
