We’re letting our customers know about our upcoming Data Subject Request (DSR) processing capability in the Azure portal, which will provide tenant admins a simple, powerful tool to quickly fulfill the Data Subject Requests that are central to compliance with the European Union General Data Protection Regulation (GDPR). We will fully support these DSR capabilities before May 25, 2018, the date when enforcement of the GDPR begins and when Microsoft has committed to be GDPR compliant across our cloud services.
The combination of the Azure portal and pre-existing Azure capabilities will enable you to respond to these types of requests for personal data that reside in the Microsoft cloud:
- Access: Provide a copy of personal data to the data subject.
- Rectify: Make changes or implement other requested actions on customer data, where applicable.
- Delete: Permanently remove personal data that resides in the Microsoft cloud.
- Export: Provide an electronic copy (in machine readable format) of personal data to the data subject, and upon request, transmit these electronic files to another data controller.