The report from the German data protection authorities (DPAs) Working Group following a 2-year investigation over a number of privacy concerns related to Microsoft Office 365 cloud products is tough reading for the Redmond-based technology company. The report concludes Microsoft has been unable to address any of the concerns raised. The report's implications could have a broader reach than in Germany, extending across the EU, where other European regulators are conducting investigations into cloud services over General Data Protection Regulation (GDPR) compliance. In February, the European Data Protection Board (EDPB) announced plans for coordinated enforcement from EU Member State data protection authorities in relation to cloud services.
The Working Group's report focused on Microsoft 365's compliance with specific provisions of the GDPR. In October 2020, the majority of German state DPAs (9-8) decided Microsoft Office 365 did not comply with data protection standards. This followed a report in January of the same year.
Related articles:
What is this page?
You are reading a summary article on the Privacy Newsfeed, a free resource for DPOs and other professionals with privacy or data protection responsibilities helping them stay informed of industry news all in one place. The information here is a brief snippet relating to a single piece of original content or several articles about a common topic or thread. The main contributor is listed in the top left-hand corner, just beneath the article title.
The Privacy Newsfeed monitors over 300 global publications, of which more than 5,750 summary articles have been posted to the online archive dating back to the beginning of 2020. A weekly roundup is available by email every Friday.