Share via

Azure Communication Services Events data residency

Andrei B 50 Reputation points
2025-06-04T10:09:03.7533333+00:00

Hello,

We are interested in using Azure Communication Services for sending emails. One of the requirements are that the data remains in the EU.

I've checked the documentation provided here: https://learn.microsoft.com/en-us/azure/communication-services/concepts/privacy where it is stated: When creating an Azure Communication Services resource, you specify a geography (not an Azure data center). All chat messages, and resource data stored by Communication Services at rest are retained in that geography, in a data center selected internally by Communication Services.

But we would also need to have an webhook for the deliverability reports and in that case it is stated that the region where this is created is global: "Any Event Grid system topic configured with Azure Communication Services is created in a global location. To support reliable delivery, a global Event Grid system topic may store the event data in any Microsoft data center. When you configure Event Grid with Azure Communication Services, you're delivering your event data to Event Grid, which is an Azure resource under your control. While Azure Communication Services may be configured to utilize Azure Event Grid, you're responsible for managing your Event Grid resource and the data stored within it."

So my questions is: is it possible to also have the Event Grid in Europe? what kind of data is stored globally and if the messages contain sensitive data that could be linked to the recipient of the email like email addresses.

Azure Communication Services
Azure Communication Services
An Azure communication platform for deploying applications across devices and platforms.
1,239 questions
0 comments
Accepted answer
  1. Bhargavi Naragani 5,975 Reputation points Microsoft External Staff Moderator
    2025-06-04T11:16:30.0233333+00:00

    Hi @Andrei B,

    As per the official Microsoft documentation, when you create an ACS resource, you choose a geography (e.g., “Europe”), not a specific data center. So, yes, if you provision the ACS resource in Europe, the underlying storage and service data (emails, metadata, etc.) will reside within European data centers, compliant with EU data residency rules.

    You're correct that Event Grid system topics used by ACS (such as for email deliverability events) are managed in a global scope. This is clearly stated in the documentation: https://learn.microsoft.com/en-us/azure/communication-services/concepts/privacy#event-handling This global configuration helps Microsoft ensure high availability and delivery guarantees for events like bounces, opens, or delivery status.

    The system topic is global, but the Event Grid destination (your handler) is under your control. Microsoft may temporarily process event data globally (for routing and delivery), but once it's delivered to your Azure Event Grid resource, you control where the data is processed/stored. Email delivery events typically contain metadata like: The recipient’s email address, Event type (e.g., Delivered, Bounced, Opened), Message identifiers, Timestamps. Yes, email addresses are considered PII under GDPR, so their handling must comply with EU laws.

    To ensure EU residency for all data under your control, we recommend the following:

    1. Provision the ACS resource in a European geography: E.g., “West Europe” or “North Europe” https://azure.microsoft.com/en-us/explore/global-infrastructure/products-by-region/?products=communication-services
    2. Use Azure Event Grid Custom Topics or Event Subscriptions hosted in a European region. This ensures once events are pushed from the global system topic, they're routed to an EU-hosted Azure resource like Azure Function, Logic App, Storage Queue https://learn.microsoft.com/en-us/azure/event-grid/overview#availability-and-regions
    3. Make sure your event handler filters and minimizes data storage. Apply data masking or encryption if needed. Follow best practices for PII handling: https://learn.microsoft.com/en-us/azure/security/fundamentals/protection-customer-data
    4. If you’re especially concerned about data movement, use Private Link to connect to Event Grid, Secure endpoints to allow traffic only within the Azure backbone network Learn more on Event Grid security

    If the answer is helpful, please click Accept Answer and kindly upvote it so that other people who faces similar issue may get benefitted from it.

    Let me know if you have any further Queries.

    1 person found this answer helpful.

1 additional answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Alex Burlachenko 10,255 Reputation points
    2025-06-04T12:46:55.84+00:00

    Andrei B hi there :)

    great question man, and thanks for dropping it here. so u want to keep everything in the EU, right? aha, got it.

    yes, azure communication services stores ur chat messages and resource data in the geography u pick when u create the resource. that part’s clear )) here’s the doc if u wanna dive deeper pls check it azure comms data residency.

    now, about event grid… when u set up webhooks for deliverability reports, event grid system topics are global by default. Microsoft says they might store event data in any of their data centers worldwide. not ideal if u need everything locked to the EU, i know :/

    but wait :) u can control where event grid processes and stores data if u use custom topics instead of system topics. Aha custom topics let u choose the region, like west europe or north europe. If u go that route, u can keep event grid stuff in the EU too. event grid regions.

    about sensitive data, event grid events might include email addresses or other recipient info, depending on how u set it up. if that’s a concern, u can mask or encrypt sensitive fields before they hit event grid. azure gives u tools for that, like data encryption or tokenization. event grid security.

    so summary of all what we are talking about

    azure comms resource data? stays in ur chosen geo, easy ))

    event grid system topics? global, but u can use custom topics to pin it to the EU.

    sensitive data? handle it with encryption or masking before it hits event grid.

    hope this helps, andrei,

    Best regards,

    Alex
and "yes" if you would follow me at Q&A - personaly thx.
P.S. If my answer help to you, please Accept my answer
PPS That is my Answer and not a Comment

    https://ctrlaltdel.blog/

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.