How Microsoft Enterprise Mobility + Security (EMS) will help you comply with GDPR

Posted on 24 July 2017

Securing and managing personal data is critical to you, your customers, and to complying with the coming requirements of the GDPR. EMS will safeguard customer data both in the cloud, and on-premises, with industry-leading security capabilities.

This includes personal data no matter where it might travel across your users, devices, and apps. EMS offers innovative technology and solutions that can help you reduce risks and achieve compliance with the GDPR.

The GDPR obligations include discovering what personal data you hold and where it resides, controlling how your users access and use personal data, and establishing security controls to prevent, detect, and respond to vulnerabilities and data breaches.

How EMS can help you meet GDPR

EMS features identity-driven security technologies that help you discover, control, and safeguard personal data held by your organisation, reveal potential blind spots, and detect when data breaches occur:

  • Azure Active Directory (Azure AD) – see our previous article on this topic
  • Microsoft Cloud App Security-  helps you discover all the cloud apps in your environment, identify users and usage, and get a risk score for each app. You can then decide if you’d like your users to access these apps. Cloud App Security then provides visibility, control, and threat protection for the data stored in those cloud apps. You can shape your cloud security posture by setting policies and enforcing them on Microsoft and third-party cloud applications. Finally, whenever Cloud App Security discovers an anomaly, it sends you an alert.
  • Microsoft Intune – helps you protect data that may be stored on personal computers and mobile devices. You can control access, encrypt devices, selectively wipe data, and control which applications store and share personal data. Intune can help you inform users about your management choices by posting a custom privacy statement and terms of use. It also gives you the ability to rename or remove devices.
  • Microsoft Azure Information Protection – see our previous article on this topic
  • Microsoft Advanced Threat Analytics – helps pinpoint breaches and identifies attackers using innovative behavioural analytics and anomaly detection technologies. Advanced Threat Analytics is deployed on-premises and works with your existing AD deployment. It employs machine learning and the latest user and entity behavioural analytics to help find advanced persistent threats and detect suspicious activities and malicious attacks used by cybercriminals, to help identify breaches before they cause damage to your business.

This article was taken from our White paper – The EU General Data Protection Regulation (GDPR) – What is it and why does it affect my organisation?

To request a copy or to find out more about how EMS can help your organisation meet its GDPR obligations, please contact us.

A few people we've already done it for