Azure compliance

Streamline your compliance with Microsoft Azure—the cloud platform leading the industry with more than 90 compliance offerings

Get cloud compliance with the broadest set of offerings

Take advantage of more than 90 compliance certifications, including over 50 specific to global regions and countries, such as the US, the European Union, Germany, Japan, the United Kingdom, India, and China. And, get more than 35 compliance offerings specific to the needs of key industries, including health, government, finance, education, manufacturing, and media. Your emerging compliance needs are covered, too: Microsoft engages globally with governments, regulators, standards bodies, and non-governmental organizations.

Explore Azure compliance offerings in the Microsoft Trust Center.

Global US Government Region / Country Specific Industry Specific
CIS Benchmark CJIS BIR 2012 (Netherlands) IT-Grundschutz (Germany) 23 NYCRR 500 (US) GLBA (US)
CSA STAR Attestation CNSSI C5 (Germany) LOPD (Spain) AFM/DNB (Netherlands) GxP
CSA STAR Certification DFARS CS Mark Gold (Japan) MeitY (India) AMF/ACPR (France) HIPAA (US)
CSA STAR Self-Assessment DoD L 2,4,5 Cyber Essentials Plus (US) MTCS Level 3 (Singapore) APRA (Australia) HITRUST (US)
ISO 20000 DoE 10 DJCP (China) My Number Act (Japan) CDSA KNF (Poland)
ISO 22301 EAR EN 301 549 (EU) New Zealand CC Framework CFTC 131 (US) MARS-E (US)
ISO 27001 FDA CFR Title 21 ENISA IAF (EU) OSPAR (Singapore) DPP (UK) MAS/ABS (Singapore)
ISO 27017 FedRAMP ENS (Spain) PASF (UK) EBA (EU) MPAA (US)
ISO 27701 FIPS 140-2 EU Model Clauses PIPEDA (Canada) FACT (UK) NBB/FSMA (Belgium)
ISO 27018 IRS 1075 EU-US Privacy Shield PDPA (Argentina) FCA/PRA (UK) NEN 7510 (Netherlands)
ISO 9001 ITAR GB 18030 (China) TISAX (Germany) FERPA (US) NERC
WCAG 2.0 NIST 800-171 GDPR Not available FINMA (Switzerland) PCI DSS
Not available Section 508 VPATs HDS (France) Not available FINRA (US) RBI/IRDAI (India)
Not available Not available IRAP (Australia) Not available FISC (Japan) SEC 17a-4
Not available Not available ISMS (Korea) Not available FSA (Denmark) SEC Regulation SCI
Not available Not available Not available Not available Not available Shared Assessments
Not available Not available Not available Not available Not available SOX (US)
Not available Not available Not available Not available Not available TruSight
"Microsoft has already done the work to ensure that data flows help us comply with regulations, including the Personal Information Protection and Electronic Documents Act in Canada and HIPAA in the United States."
Eric Day, Vice President

Access tools that simplify and accelerate cloud compliance

Gain tools and guidance to help you develop compliant solutions faster. Built-in compliance controls, configuration management tools, implementation and guidance resources, and third-party audit reports speed your process and save you money. Explore tools such as:

Azure Security and Compliance Blueprints—easily create, deploy, and update compliant environments, including for certifications like ISO:27001, PCI DSS, and UK OFFICIAL.

Azure Security Center—unify security management and enable advanced threat protection across hybrid cloud workloads.

Azure Policy—to define and enforce policies that help your cloud environment become compliant with internal policies and external regulations.

"Azure datacenters are also FedRAMP-certified, which is critical in pursuing US federal government work."
David Greetham, Vice President of eDiscovery Sales and Operations at Ricoh USA

See proof of Azure security with third-party reports

Develop your solutions on a platform created using some of the most rigorous security and compliance standards in the world. Get independent audit reports verifying that Azure adheres to security controls for ISO 27001, ISO 27018, SOC 1, SOC 2, SOC3, FedRAMP, HITRUST, MTCS, IRAP, and ENS.

Sign up

Get $200 in Azure credits and 12 months of popular services—free.


Start using Azure right away with these tutorials and videos.


Explore popular services and start building your solution.