Start preparing for your Next Exam | Use coupon – TOGETHER | Avail 30% discount

Compliance, Data Privacy and Accessibility Guidelines

  1. Home
  3. Compliance, Data Privacy and Accessibility Guidelines

Microsoft offers one of the most comprehensive sets of compliance offerings of any cloud service provider. Moreover, they offer tools for administrators to support your organization’s efforts. In this section, we will consider the resources available to help us determine and achieve our own organization requirements efficiently. We shall now discuss some of the resources used.

Trust Center

  • Firstly, Microsoft Trust Center (https://www.microsoft.com/trustcenter) is a centralized resource for obtaining information on Microsoft’s portfolio of products.
  • Secondly, the trust center includes information on security, privacy, compliance, and transparency.
  • Also, it is important to always refer to the Microsoft Trust Center for the most up-to-date authoritative information, while the content may contain some subset of this information for Power Apps,

Data Location

  • Firstly, Microsoft operates multiple data centers worldwide that support Microsoft Power platform applications.
  • Secondly, when an organization establishes a tenant, it establishes the default geographical (geo) location.
  • Additionally, when creating environments to support applications and contain Microsoft Dataverse data the environments can be targeted for specific geo. 
  • Microsoft may replicate data to other regions within a geo, but the data will not move outside the geo to support data resiliency.

Data Protection

  • Firstly Microsoft ensures the Data if in transit between user devices and the Microsoft datacenters, are secured.
  • Secondly, connections established between customers and Microsoft datacenters are encrypted, and all public endpoints are secured using industry-standard TLS.
  • Also, TLS effectively establishes a security-enhanced browser to server connection to for ensuring data confidentiality and integrity between desktops and datacenters.
  • Lastly, TLS 1.2 (or higher) is required for accessing the server endpoints.

Power Automate Audit Log Events

  • Firstly, in the compliance center Audit Log Search, administrators can search and view Power Automate events.
  • Secondly, events include Created flow, Edited flow, Deleted flow, Edited Permissions, Deleted Permissions, Started a paid trial, Renewed a paid trial.
  • Also, by using the portal you can choose what you want to search and a time window such that audit data is retained for 90 days.
  • Next, we can do CDSV exports of the data allowing them to move it into Excel or PowerBI for further analysis.
  • Lastly, we can find a complete walkthrough of using the audit information.
Menu