Note
Access to this page requires authorization. You can try signing in or changing directories.
Access to this page requires authorization. You can try changing directories.
Intune supports compliance features to help organizations meet national, regional, and industry-specific regulations. Intune aligns with Microsoft's commitment to data protection, privacy, and compliance by offering tools to help secure and manage data effectively.
Shared responsibility model
Microsoft ensures that Intune complies with various industry standards and regulatory frameworks. However, customers are responsible for implementing their data protection and compliance strategies to align with their specific organizational requirements.
Compliance certifications
Intune is covered under several compliance certifications, and regulatory standards. The following table provides a sample of the key certifications that are covered:
| Certification or Standard | Description | Applicability |
|---|---|---|
| GDPR | EU General Data Protection Regulation for data privacy | European Union |
| ISO 27001 | International standard for information security management | Global |
| HIPAA | U.S. Health Insurance Portability and Accountability Act | United States |
| SOC 2 Type 2 | Service Organization Controls for data security | Global |
Note
Microsoft Intune helps your organization meet regulatory compliance standards. Intune supports additional certifications, such as ISO 22301, ISO/IEC 27017, ISO/IEC 27018, ISO/IEC 27701, SOC 1 Type 2, SOC 3, and WCAG.
For a complete list, see Microsoft compliance offerings.
Compliance dependencies
Intune leverages other Microsoft services for compliance, including:
- Microsoft Purview: A suite of data governance and compliance tools.
- Microsoft Entra ID: Identity and access management, formerly known as Azure Active Directory (Azure AD).
- Microsoft Purview Compliance Manager: Tools for managing compliance across your organization.
- Microsoft Defender for Endpoint: An enterprise endpoint security platform.
Microsoft Intune capabilities for compliance
Microsoft Intune helps enforce compliance policies and protect organizational data specifically for Intune:
- Conditional Access: Ensures only compliant devices and apps managed by Intune can access sensitive data. See Conditional Access.
- Device Compliance Enforcement: Enforces device compliance policies to meet organizational security requirements. See Device Compliance Policies.
For more information about Intune compliance capabilities, visit the Microsoft Intune documentation.
Data residency and protection
Intune supports compliance with data residency requirements by supporting Microsoft Cloud's regional and global data storage policies. These policies include:
- Data location: Data is stored in Microsoft-managed data centers. For more information, see Data storage and processing in Intune.
- EU Data Boundary: Ensures that data belonging to EU customers is stored and processed within the EU. For more information, see EU Data Boundary and Configure Microsoft Tunnel for Intune.
- Encryption: Data is encrypted at rest and in transit. For more information, see Access requirements policy mapping from Basic Mobility and Security to Intune.
Compliance features
Intune includes several compliance features that help organizations meet regulatory requirements, manage data lifecycles, and protect sensitive information. These features are designed to ensure your organization can effectively monitor, classify, and safeguard its data while maintaining compliance with industry standards.
Data lifecycle management
Important
Microsoft Intune doesn't use any personal data collected as part of providing the service for profiling, advertising, or marketing purposes.
Intune supports data lifecycle management through retention policies and labels. These features help organizations retain or delete data based on compliance requirements. For more information, see Privacy and personal data in Intune.
Auditing and reporting
Microsoft Purview (included in the Microsoft 365 E5 license) supports auditing and reporting for Intune. IT administrators can monitor data usage and ensure adherence to organizational compliance policies. Features include:
- eDiscovery: Enables organizations to locate data for legal or regulatory needs.
- Data Retention Policies: Helps organizations manage data lifecycles.
For more information, see the Protect your sensitive data with Microsoft Purview.
Privacy controls
Intune includes privacy controls to manage data collection, storage, and sharing:
For details about privacy, see Privacy and personal data in Intune.