Leverage ISO 27001 + ISO 27701 to Meet Your Microsoft SSPA Requirements
Microsoft requires that all vendors meet the requirements within the Supplier Security and Privacy Assurance Program (SSPA). This program requires that any vendor that collects, stores, or processes customer, partner, or employee information meet the reporting requirements.
Together the ISO 27001 and ISO 27701 certifications can satisfy the requirements of Microsoft SSPA. These two certifications provide the controls and guidance required for establishing, implementing, maintaining, and continually improving an organization’s privacy information management system (PIMS).
The Benefits of a Microsoft SSPA Attestation:
- Ensures your Microsoft supplier access is not revoked and business operations are not disrupted
- Accelerates your revenue and market growth, and helps differentiate your business
- Provides your customers with the assurance that you have the controls in place to protect their data
- Assures Microsoft and your clients that your organization meets the privacy and security safeguard requirements set by Microsoft