Data privacy and protection – Stay on track with regulations
Welcome to Step 3 of managing data privacy and data protection with Microsoft Priva and Microsoft Purview: Stay on track with privacy regulations.
Research shows that there are over 250 daily updates to global regulations*. Microsoft Purview Compliance Manager helps you keep up with the evolving compliance and risk landscape by providing continuous control assessments and regulatory updates. Choose from a library of 350+ templates that correspond to national, regional, and industry-specific requirements on the collection and use of data. Modify the templates for your needs, or create your own custom template for assessments that meet your unique needs. Explore the links below for detailed guidance on managing your organization's compliance activities with Compliance Manager.
Actions to take
|Monitor progress and improve your compliance score.||Make sure you've set up assessments in Compliance Manger to help you stay on top of new and evolving data privacy regulations and laws that apply to your organization.||Build and manage assessments in Compliance Manager
Raise your score by completing improvement actions
|Automatically test improvement actions.||To realize the full benefits of continuous control assessment, make sure your settings are configured to enable automatic testing of all eligible improvement actions.||Set your testing source for automated testing|
|Set alerts for changes in Compliance Manager.||Compliance Manager can alert you to changes as soon as they happen so that you can stay on track with your compliance goals. Set up alerts for improvement action changes such as a score increase or decrease, an implementation or test status change, a reassignment, or the addition or removal of evidence.||Create alert policies|
|Facilitate the work of assessors and auditors.||Make sure that individuals who oversee compliance activities in the organization have the right roles and can access evidence files and reporting. Compliance Manager allows scoped access to individual assessment for specific users.
You can upload evidence files to improvement actions that document your implementation and testing work. Assign improvement actions to users serving as assessors so they can determine a pass or fail status.
Provide reporting on your assessments to compliance stakeholders, auditors, and regulators. Exported reports contain details about control implementation status, test date, and test results.
|Grant user access to individual assessments
Store evidence documentation
Assign improvement actions to assessors
Export an assessment report
*Cost of Compliance 2021, Thomson Reuters, 2021