ISO/IEC 27001 is a security standard that is intended to bring information security under explicit management control. Being a formal specification means that it mandates specific requirements, defining how to we implement, monitor, and maintain our service. It also specifies a set of best practices that include requirements for documentation, divisions of responsibility, availability, access control, security, auditing, and corrective and preventive measures. It is one of the most broadly recognized certifications for a cloud service.
We are proud to join the family of Microsoft cloud services in scope for ISO/IEC 27001. ISO 27018, an addendum to ISO/IEC 27001, is the first international code of practice for cloud privacy. Based on EU data-protection laws, it gives specific guidance to cloud service providers acting as processors of personally identifiable information (PII) on assessing risks and implementing state-of-the-art controls for protecting PII.
Along with ISO 27001 and 27018, Stream Analytics is HIPAA compliant. HIPAA (Health Insurance Portability and Accountability Act) establishes requirements for the use, disclosure and safeguarding of individually identifiable health information.
And finally, Stream Analytics is now in scope for the EU Model Clauses. We offer customers EU Model Clauses to provide additional safeguarding of any personal data originating in the EU in compliance with the EU Data Protection Directive.
With these certifications and attestations, we hope to unlock new business opportunities for customers using Azure Stream Analytics. From here, we will continue to meet and attain key international and industry specific compliance standards.
We’re excited about achieving these certifications and hope this unlocks new opportunities for you to get more insights into your real-time streaming data.
As always, we welcome you to provide feedback on what you want to see next by using our User Voice page.
To stay up-to-date on the latest news and features follow @AzureStreaming on Twitter.