The General Data Protection Regulation (GDPR) is a European regulation but applies to any organisation that does business with or within the countries of the European Union. It therefore affects Microsoft and Microsoft Dynamics 365 Apps.
GDPR is concerned with data protection and privacy right, for example:
- Consent
- Right to access
- Mandatory breach notification
- Privacy by design
- Having a Data Protection Officer
- Data Subject Requests
Systems that handle personal data such as Dynamics 365 need to be able to find personal data, be able to remove it upon request (regulatory use excepting) – sometimes knows as right to be forgotten, record and process DSRs, and be able to prove compliance.
If is not as simple to just ask “Is my Dynamics 365 App GDPR compliant?”. A product in itself cannot be compliant, your organisation must be compliant by its use of systems and the processes it has.
Microsoft provides various tools and capabilities within the Dynamics 365 Apps to aid your compliance. These tools and capabilities fall into the four stages of GDPR compliance: Discover, Manage, Protect, and Report. Later blogs posts will look at each Dynamics 365 App and the options that are available in each of the four stages. You can start with the White Papers and Compliance Manager tool.
White Papers
Microsoft has created White Papers on GDRP for each of the Dynamics 365 Apps.
Compliance Manager
The Service Trust Portal contains the Compliance Manager tool. This is part of Microsoft’ Shared Responsibility model in that it shows how both you and Microsoft meet GDPR requirements.
More Information
GDPR
https://eugdpr.org/the-regulation/
White papers on Dynamics 365 and GDPR
https://docs.microsoft.com/dynamics365/get-started/gdpr/
Compliance Manager
https://servicetrust.microsoft.com/ComplianceManager
Data Subject Requests for Dynamics 365
https://docs.microsoft.com/en-us/microsoft-365/compliance/gdpr-dsr-dynamics365
The post is part of a series for preparing and revising for the Dynamics 365 Fundamentals exam, MB-900. You can find the whole series here.
Pingback: MB-900 Microsoft Dynamics 365 Fundamentals Revision Guide | Microsoft Dynamics 365 UK MCT