Thank you for your question.
When working with sensitive documents using the Vision API, it's important to take steps to ensure non-disclosure and maintain privacy. To achieve this, you can implement the following measures:
Firstly, the Vision API processes data temporarily and retains it only for a maximum of 48 hours. This means that after processing, the data is automatically deleted and not stored permanently. Secondly, ensure that data is encrypted both in transit and at rest. Azure Cognitive Services, including the Vision API, support encryption to protect your data. Thirdly, implement strict access controls to ensure that only authorized personnel can access the data. Use Azure Active Directory to manage identities and access. Fourthly, although not necessary for data that is only temporarily stored, you can delete the resource group after processing to ensure that all associated data is removed. Fifthly, review the Microsoft Cognitive Services privacy statement to understand the data handling policies in place: Microsoft updates to Cognitive Services terms. Lastly, make sure to document and follow internal policies for handling sensitive data, including guidelines for using external APIs and services.
Azure Computer Vision complies with various data protection regulations, including GDPR. The data is processed and stored in the region you select, and Microsoft will not share your data with others. Ensure you are familiar with the Azure Cognitive Services compliance and privacy documentation to understand the specifics of compliance standards such as HIPAA and GDPR.
I hope you understand. Thank you.
Please don't forget to click Accept Answer
and Yes
for was this answer helpful.