Planning for regulatory compliance in Microsoft 365
GDPR dashboards & reports
Using Compliance Manager
The course is part of these learning paths
This course is designed to give you a firm understanding of the compliance features available to a Microsoft 365 administrator and how to manage regulatory compliance in a Microsoft 365 environment. Taking this course will also help you to prepare for the regulatory and compliance aspects of Microsoft's MS-500 certification exam.
- Understand what regulatory compliance is
- Plan and implement regulatory compliance features
- Learn how to manage regulatory compliance in Microsoft 365
- Manage Data Subject Rights (DSR) requests
- Report on compliance in Microsoft 365
This course is intended for anyone who wants a greater understanding of the regulatory compliance features that are available in Microsoft 365.
To get the most out of this course, you should have some experience using Microsoft 365 and a basic understanding of how the Microsoft 365 system works.
Microsoft Compliance Offerings: https://docs.microsoft.com/en-us/compliance/regulatory/offering-home
Microsoft 365 GDPR action plan: https://docs.microsoft.com/en-us/compliance/regulatory/gdpr-action-plan
Microsoft Compliance Documentation & Resources: https://docs.microsoft.com/en-us/compliance/?view=o365-worldwide
So the next thing we're gonna take a look at is Microsoft 365 compliance manager reports. Now the reports in compliance manager are pretty straightforward. You're basically looking at the dashboard. This has taken over the reporting features that used to be available in compliance manager. Basically, the tool now is just this dashboard and using the filter to filter based on your different assessments.
Something that may come up in the exam though, is taking a look at the old compliance manager and the way to do the reports in the old compliance manager. So the URL for the classic compliance manager is available by going to servicetrust.microsoft.com. So from here, we would go compliance manager and compliance manager classic. So this will take you to the classic compliance manager.
The other thing we're in is the new compliance manager. It's the modern way of doing it. This is the old way of doing it, but it may still be inside of the exam. So it's just good to get familiar with it and make sure you know your way around, just in case some questions do come up during the exam around the compliance manager and it is based on the old compliance manager, not the new compliance manager.
So you can see here, compliance manager classic will soon be removed from the Microsoft service trust portal. That is because it is going to be going away. So the classic way of doing a report inside of the classic compliance manager would be to add an assessment, give it a name. And we will say, no, select the product, select the certification, so we'll do it for GDPR. And then add to dashboard. Then you would go to the assessment, open it up, and basically check, so we'd have customer-managed controls and Microsoft-managed controls. So they're all the ones that Microsoft has already done for you, you don't need to worry about it.
Down below would be the customer-managed controls. In here, you would assign and implement, select the implementation date and the test results and all of that stuff. And then when you've finished the assessment, the way to report on the assessment would be to export it to Excel, open it up. And there we go. Now here is our compliance manager report. As you can see, we have all of these different things. These ones are the Microsoft ones, got that it's passed the test, and the customer ones.
So then you could go along and you could see the implementation status, which, as of current we have not implemented anything because we just created this. So that's just something to be familiar with, have a look at it and just make sure you know your way around. All of the concepts are the same in the old portal as the new portal, just the buttons are in different spots.
Jake is an IT manager for a managed services company that works with small- to medium-size businesses and manages their IT. He mainly works with a Microsoft Stack, from Servers to Microsoft 365 & Azure. He also specializes in business process improvement helping businesses to leverage technology to speed up their workflows. Jake really enjoys testing out new technologies and seeing what they can do. Outside of work he enjoys kayak fishing, gardening, and going to the gym.