Today, data security and compliance have become hot topics, largely due to the EU’s general data protection regulation (gdpr) coming into force on May 25. To help its cloud customers better adapt to the strict new data privacy provisions in the law, Microsoft announced the full launch of some new compliance tools.
Tom Keane, head of Microsoft azure global infrastructure, said in May that the first is the azure data subject request (DSR) portal, which enables enterprises to “respond to requests to access, correct, delete and export personal data in the cloud”. Announcement on the 25th. “In addition, azure enables customers to access the logs generated by the system as part of azure services.”
According to gdpr, organizations operating in the EU market or collecting data on EU residents, even if headquartered elsewhere, must comply with the regulation and many of its provisions. These authorizations include “access rights of data subjects”, and the company must provide users or data subjects with copies of their personal data upon request. The data subject also has the so-called “erasure right” or “forgotten right”, which requires enterprises to clear their users’ personal data when asked.
In order to enable enterprises to formulate policies to improve gdpr compliance, Microsoft also officially launched azure policy, a free tool that allows enterprises to implement data management strategies for various situations and regulatory systems. Users can ensure that their cloud data is limited to a certain area or encrypted (take Keane as an example).
Generally, you can also use the compliance manager gdpr dashboard, which is another free tool for azure customers. The company said that enterprises can use the interface to assign, track and record compliance tasks, so that the team can coordinate work and assist in creating audit reports. In terms of cloud storage, the new integration between the two major azure services can help cloud customers of software manufacturers exercise stricter control over access to sensitive information.
As part of the new integrated beta, azure storage now supports azure Active Directory authentication in blobs and queues. Azure storage blob is the object storage undertaken by Microsoft, and the company’s azure queue storage provides a large cloud workload through the message queue function.
Lavanya kasarabada, a senior project manager in Microsoft azure storage, wants to simplify how they control access to their data, part of their security or compliance requirements, and one of the most needed features by enterprise customers, “a blog post called” new features “. She added that organizations can now grant specific permissions for applications, groups, or users to a single blob container or queue.
Microsoft is not the only technology giant entangled with gdpr. Google announced on May 11 that its cloud services fully comply with the law. Google has introduced new data export functions for its G suite and Google cloud identity services, which can help meet the data portability requirements of gdpr and other new functions.
Amazon Web services (AWS), the cloud market leader, issued a similar announcement on March 26. “The announcement confirms that we have completed the whole gdpr service readiness audit and verified that all commonly available services and functions meet the data processor standards required by gdpr with high privacy bar and data protection.” Said Chad Woolf, vice president of safety assurance at AWS.