Azure Storage compliance offerings

To help organizations comply with national, regional, and industry-specific requirements governing the collection and use of individuals' data, Microsoft Azure & Azure Storage offer the most comprehensive set of certifications and attestations of any cloud service provider.

You can find below compliance offerings on Azure Storage to ensure your service regulated in using Azure Storage service. They are applicable to the following Azure Storage offerings: Blobs(ADLS Gen2), Files, Queues, Tables, Disks, Cool Storage, and Premium Storage.

Global

• CSA-STAR-Attestation
• CSA-Star-Certification
• CSA-STAR-Self-Assessment
• ISO 20000-1:2011
• ISO 22301
• ISO 27001
• ISO 27017
• ISO 27018
• ISO 9001
• WCAG 2.0

US Government

• DoD DISA L2, L4, L5
• DoE 10 CFR Part 810
• EAR (US Export Administration Regulations)
• FDA CFR Title 21 Part 11
• FedRAMP
• FERPA
• FIPS 140-2
• NIST 800-171
• Section 508 VPATS

Industry

• 23 NYCRR Part 500
• APRA (Australia)
• CDSA
• DPP (UK)
• FACT (UK)
• FCA (UK)
• FFIEC
• FISC (Japan)
• GLBA
• GxP
• HIPAA/HITECH
• HITRUST
• MARS-E
• MAS + ABS (Singapore)
• MPAA
• NEN-7510 (Netherlands)
• PCI DSS
• Shared Assessments
• SOX

Regional

• BIR 2012 (Netherlands)
• C5 (Germany)
• CCSL/IRAP (Australia)
• CS Gold Mark (Japan)
• DJCP (China)
• ENISA IAF (EU)
• ENS (Spain)
• EU-Model-Clauses
• EU-U.S. Privacy Shield
• GB 18030 (China)
• GDPR (EU)
• IT Grundschutz Workbook (Germany)
• LOPD (Spain)
• MTCS (Singapore)
• My Number (Japan)
• NZ CC Framework (New Zealand)
• PASF (UK)
• PDPA (Argentina)
• PIPEDA (Canada)
• TRUCS (China)
• UK-G-Cloud

Next steps

Microsoft Azure & Azure Storage keep leading in compliance offerings, you can find the latest coverage and details in Microsoft TrustCenter.