![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(86.4, 27%, 18%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESH%3C/text%3E%3C/svg%3E)
Azure OpenAI in Foundry Models
An Azure service that provides access to OpenAI’s GPT-3 models with enterprise capabilities.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(6.4, 51%, 10%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EKV%3C/text%3E%3C/svg%3E)
Hello Sreerenjith,
Welcome to Microsoft Q&A .Thank you for reaching out to us.
Azure OpenAI Service is governed under the Products and Services Data Protection Addendum (DPA), which defines the contractual framework for processing and protecting customer data.
- The DPA automatically applies to Azure services, including Azure OpenAI
- No separate agreement is required specifically for Azure OpenAI Service
- The DPA covers:
- Processing of Customer Data and Personal Data
- Security and confidentiality commitments
- Sub-processor governance
- Support for data subject rights under GDPR
As for GDPR roles
- Service provider operates as a Data Processor
- Customer organization operates as a Data Controller, responsible for:
- Defining lawful basis of processing
- Controlling data usage and classification
- Ensuring compliance within applications
Azure OpenAI operates within an enterprise compliance framework that supports GDPR-aligned deployments through strong technical and organizational controls.
Key safeguards include
- Data usage restrictions - Prompts, outputs, embeddings, and fine-tuning data are not used to train foundation models without explicit permission.
- Data isolation - Customer data is logically isolated within the service architecture
- Encryption
- Data in transit: TLS encryption
- Data at rest: Encrypted using platform-managed or customer-managed keys
- Compliance standards - Alignment with ISO 27001, ISO 27701, and SOC frameworks
- Data residency - Deployment can be aligned to supported regions to address data residency requirements
- Controlled monitoring - Limited data processing may occur for abuse detection under strict access controls
The following references might be helpful , please check them out
- Data, privacy, and security for Azure Direct Models in Microsoft Foundry - Microsoft Foundry | Microsoft Learn
- Licensing Documents
- Microsoft Accessibility | Microsoft Trust Center
Thank you