All the latest UK technology news, reviews and analysis

Microsoft boasts of EU endorsement for enterprise cloud privacy

11 Apr 2014
Cloud computing

Microsoft has claimed it is the first cloud provider to receive approval from the European Union's data protection authorities for meeting the high standards of EU privacy law. However, questions still remain over how this protects European firms against privacy threats such as the US Patriot Act.

The software giant announced in a blog post that the EU Article 29 Working Party has approved Microsoft's enterprise cloud service contracts as being in compliance with the high standards of EU privacy law, as set out in the EU Model Clauses.

This applies to Microsoft's enterprise cloud services, including Microsoft Azure, Office 365, Microsoft Dynamics CRM and Windows Intune.

Microsoft's general counsel Brad Smith said: "By acknowledging that Microsoft's contractual commitments meet the requirements of the EU's Model Clauses, Europe's privacy regulators have said, in effect, that personal data stored in Microsoft's enterprise cloud is subject to Europe's rigorous privacy standards no matter where that data is located.

"This is especially significant given that Europe's Data Protection Directive sets such a high bar for privacy protection."

The Model Clauses are a set of provisions developed by the Article 29 Working Party, which comprises representatives from each of the 28 European Union data protection authorities (DPAs) plus the European Commission, to ensure safeguards are in place to protect personal data that leaves the European Union.

Microsoft said it is the first and only cloud provider to receive this type of recognition. In addition, it claimed that Europe's privacy regulators are endorsing that personal data stored in Microsoft's enterprise cloud is subject to European privacy standards, no matter where that data is located.

However, the software giant has previously admitted that the US government's Patriot Act legislation compels it as a US-based company to provide access to any data that it holds, regardless of where it is stored and who owns that data.

Microsoft told V3 in a previous query regarding customer data: "The Patriot Act mandates that any company with a presence in the US is legally required to respond to a valid demand from the US government for information if the company retains custody or control over the data.

"This is the case regardless of where the data is stored or the existence of any conflicting obligations under the laws where the data is located."

At the time of writing, the firm had not responded to a further request for clarification on whether this is still the case.

  • Comment  
  • Tweet  
  • Google plus  
  • Facebook  
  • LinkedIn  
  • Stumble Upon  
Daniel Robinson

Daniel Robinson is technology editor at V3, and has been working as a technology journalist for over two decades. Dan has served on a number of publications including PC Direct and enterprise news publication IT Week. Areas of coverage include desktops, laptops, smartphones, enterprise mobility, storage, networks, servers, microprocessors, virtualisation and cloud computing.

More on Cloud Computing
What do you think?
blog comments powered by Disqus

Devices at work poll

Which device do you use most for work?

Popular Threads

Powered by Disqus
LG G Flex 2 hands-on review

CES 2015: LG G Flex 2 video

A closer look at LG's latest curved-screen smartphone

Updating your subscription status Loading

Get the latest news (daily or weekly) direct to your inbox with V3 newsletters.

newsletter sign-up button

Getting started with virtualisation

Virtualisation can help you reduce costs, improve application availability, and simplify IT
management. However, getting started can be challenging


Converting big data and analytics insights into results

Successful leaders are infusing analytics throughout their organisations to drive smarter decisions, enable faster actions and optimise outcomes

UI UX Designer - Software House Berkshire

UI UX Designer - Software House Berkshire User Interface...

Senior Infrastructure Engineer / 3rd Line Support / Northwich

Senior Infrastructure Engineer / 3rd Line Support / Northwich...

Senior Java Developer / Technical Lead - £70k

Senior Java Developer / Technical Lead (Java/JEE) Circa...

Java Developer Horsham/West Sussex

Java Developer Horsham/West Sussex We are looking...
To send to more than one email address, simply separate each address with a comma.