Microsoft said on Thursday that it will keep all personal data of its cloud customers within the European Union instead of allowing transfers outside the EU. This is part of their ongoing efforts to comply with different privacy regulations in different places.
Microsoft will store customer data from its cloud services within the “EU data boundary” under the new policy. This includes Azure, Microsoft 365, Power Platform, and Dynamics 365.
By infosecbulletin
/ Saturday , April 26 2025
NVIDIA has released a software security update for its GPU Display Driver to fix multiple vulnerabilities affecting both the driver...
Read More
By infosecbulletin
/ Saturday , April 26 2025
The SessionShark phishing kit bypasses Office 365 MFA by stealing session tokens. Experts warn about real-time attacks using fake login...
Read More
By infosecbulletin
/ Friday , April 25 2025
In Q1 2025, VulnCheck identified evidence of 159 CVEs publicly disclosed for the first time as exploited in the wild....
Read More
By infosecbulletin
/ Friday , April 25 2025
The NVIDIA NeMo Framework has three vulnerabilities that could enable attackers to execute remote code, risking AI system compromise and...
Read More
By infosecbulletin
/ Thursday , April 24 2025
Cisco issued a security advisory about a remote code execution (RCE) vulnerability (CVE-2025-32433) affecting multiple products in its portfolio due...
Read More
By infosecbulletin
/ Thursday , April 24 2025
SonicWall has revealed a vulnerability in its SonicOS SSLVPN Virtual Office interface that could let remote attackers crash firewall appliances....
Read More
By infosecbulletin
/ Thursday , April 24 2025
GitLab has announced a security advisory urging users to upgrade their self-managed installations right away. Versions 17.11.1, 17.10.5, and 17.9.7...
Read More
By infosecbulletin
/ Wednesday , April 23 2025
Imdadul Haque, the president of Internet Service Provider of Bangladesh (ISPAB) said, I automatically got back my WhatsApp account. What...
Read More
By infosecbulletin
/ Wednesday , April 23 2025
Zyxel Networks has issued critical security patches for two high-severity vulnerabilities in its USG FLEX H series firewalls. These flaws...
Read More
By infosecbulletin
/ Wednesday , April 23 2025
South Korea's largest mobile operator, SK Telecom, is warning that a malware infection allowed threat actors to access sensitive USIM-related...
Read More
This includes “pseudonymized personal data,” which is found in system-generated logs and has been altered so as not to be directly linked to an individual — “making Microsoft the first large-scale cloud provider to deliver this level of data residency to European customers,” the company said in a release.
Microsoft announced in December 2022 that it will start localizing data storage soon. The first phase was completed last year and focused on storing personal data within the EU, excluding system-generated logs.
Recently, Microsoft and other big tech companies are under scrutiny from regulators over data transfers from the European Union, which has strict privacy laws under the General Data Protection Regulation (GDPR). In May 2023, Meta was fined $1.3 billion by the Irish Data Protection Commission for transferring data to the United States, where there are concerns about limited protections and sensitive information possibly ending up in the hands of law enforcement.
In July 2023, the EU and U.S. agreed on a new “Data Privacy Framework” allowing data transfers with protections. However, Microsoft is pursuing its EU Boundary plan, and Amazon plans to launch a “European Sovereign Cloud” service to keep customers’ metadata within the bloc.