Security, privacy, and compliance in Microsoft Defender for Business

At Microsoft, we're committed to security, privacy and compliance in Defender for Business. Your administrators and security teams can use the information in this article to see the steps we take to keep your organization and data secure.

Security

Defender for Business helps protect your organization's devices with enterprise-grade security. Microsoft uses the following security best practices and procedures for service-level security:

• Defense in-depth.
• Customer controls within the service.
• Security hardening.
• Operational best practices for Microsoft 365.

For information, see the Microsoft Trust Center - Security.

For related configuration information, see the following articles:

• Set up and configure Microsoft Defender for Business
• Microsoft 365 for business security best practices

Privacy

For information about privacy in Defender for Business, see:

• Microsoft Trust Center - Data protection and privacy.
• Privacy at Microsoft

Compliance

For information about compliance in Defender for Business, see the Microsoft Trust Center - Compliance.

Related resources

• Small business Zero Trust guidance - Additional threat protection for Microsoft 365 Business Premium
• Privacy & data management overview