Microsoft 365

The privacy policy by is a legal document or statement that discloses how Microsoft 365 gathers, uses, discloses, and manges their customers' data.

Get the contact information for Microsoft 365 privacy team or DPO.

The DPA is a contract between you and Microsoft 365 that has to be in place when processing personal data and transferring it to Microsoft 365.

A description of the different categories of personal data and data subjects that Microsoft 365 is handling with the location of Microsoft 365.

Subprocessors are companies that provide a service for Microsoft 365 and who have or potentially will get access to personal data of Microsoft 365 customers.

The location of the subprocessors that are processing data on behalf of Microsoft 365. If data is sent outside the EEA there must be a legal basis for these transfers.

The basis for Microsoft 365 transfers of personal data outside EEA. Vendors can also add a description of their own impact assessment for data transfers.

Statement or documentation of the security measures and practises Microsoft 365 have in place when handling personal data.