Security, privacy, and compliance in Microsoft Defender for Business

At Microsoft, we're committed to security, privacy and compliance in Defender for Business. Your administrators and security teams can use the information in this article to see the steps we take to keep your organization and data secure.


Defender for Business helps protect your organization's devices with enterprise-grade security. Microsoft uses the following security best practices and procedures for service-level security:

  • Defense in-depth.
  • Customer controls within the service.
  • Security hardening.
  • Operational best practices for Microsoft 365.

For information, see the Microsoft Trust Center - Security.

For related configuration information, see the following articles:


For information about privacy in Defender for Business, see:


For information about compliance in Defender for Business, see the Microsoft Trust Center - Compliance.