MB-900 Microsoft Dynamics 365 Fundamentals – GDPR

Posted on April 30, 2019 by Julian Sharp

The General Data Protection Regulation (GDPR) is a European regulation but applies to any organisation that does business with or within the countries of the European Union. It therefore affects Microsoft and Microsoft Dynamics 365 Apps.

GDPR is concerned with data protection and privacy right, for example:

  • Consent
  • Right to access
  • Mandatory breach notification
  • Privacy by design
  • Having a Data Protection Officer
  • Data Subject Requests

Systems that handle personal data such as Dynamics 365 need to be able to find personal data, be able to remove it upon request (regulatory use excepting) – sometimes knows as right to be forgotten, record and process DSRs, and be able to prove compliance.

If is not as simple to just ask “Is my Dynamics 365 App GDPR compliant?”.  A product in itself cannot be compliant, your organisation must be compliant by its use of systems and the processes it has.

Microsoft provides various tools and capabilities within the Dynamics 365 Apps to aid your compliance. These tools and capabilities fall into the four stages of GDPR compliance: Discover, Manage, Protect, and Report. Later blogs posts will look at each Dynamics 365 App and the options that are available in each of the four stages. You can start with the White Papers and Compliance Manager tool.

White Papers

Microsoft has created White Papers on GDRP for each of the Dynamics 365 Apps.

Compliance Manager

The Service Trust Portal contains the Compliance Manager tool. This is part of Microsoft’ Shared Responsibility model in that it shows how both you and Microsoft meet GDPR requirements.

image

More Information

GDPR
https://eugdpr.org/the-regulation/

White papers on Dynamics 365 and GDPR
https://docs.microsoft.com/dynamics365/get-started/gdpr/

Compliance Manager
https://servicetrust.microsoft.com/ComplianceManager

Data Subject Requests for Dynamics 365
https://docs.microsoft.com/en-us/microsoft-365/compliance/gdpr-dsr-dynamics365

The post is part of a series for preparing and revising for the Dynamics 365 Fundamentals exam, MB-900. You can find the whole series here.

About Julian Sharp

I have worked with Dynamics CRM/365 since 2004 and have been involved in over 100 CRM projects. I am a Dynamics 365 MCT and teach Dynamics 365 and Azure in the UK and across Europe
This entry was posted in Certification, Dynamics 365, Fundamentals, NeverStopLearning and tagged , , . Bookmark the permalink.

1 Response to MB-900 Microsoft Dynamics 365 Fundamentals – GDPR

  1. Pingback: MB-900 Microsoft Dynamics 365 Fundamentals Revision Guide | Microsoft Dynamics 365 UK MCT

Leave a comment

This site uses Akismet to reduce spam. Learn how your comment data is processed.