Reg. compliance and Data Privacy Assessment: 3-wk

At PwC, we have the expertise to build a solid foundations for digital workplace designs powered by Microsoft 365 and its security and compliance functions based on your regulatory requirements. This will enable you to consume Microsoft 365 to the fullest potential.

The duration of the assessment depends on the complexity of your organisation.

Challenge:

• Compliance with laws & regulations is situated in the legal department. This creates a challenge for the IT department implementing systems.
• Globally operating companies are often uncertain whether implementation of new systems complies with data privacy & security laws and regulations in all the countries and industries they are active.
• Depending on cases, companies may face fines up to 4 % of the total worldwide annual turnover for data breaches.

Perspective:

• Our expert team with legal and IT experience collects information necessary to understand your status quo to develop scenario and gap analysis for your digital workplace journey making sure that security and data privacy aspects are properly addressed by using Microsoft 365 capabilities.
• We support you throughout your digital workplace journey in compliance with the security and privacy standards, laws and regulations that govern your company.

What you get

• We gather information of your regulated environment, based on industries and countries you are operating in. (week 1)
• We assess your current state in terms of usage of Microsoft 365 based on the collected information in week 1 (week 2)
• We provide you with recommendations on how to setup your Microsoft 365 on a high-level. E.x. usage of Multi-Geo / Lockbox features, to comply with your regulatory environment (week 3)

Key areas of focus:

• CH E-DSG
• EU GDPR
• FINMA Regulations
• Critical Infrastructure Protection
• Foreign Regulations

Microsoft Services

• Microsoft 365 E3/E5
• Microsoft ATP
• Microsoft Compliance and Security Center