Office 365 email how is this effected by GDPR

Question

In May 2018 across Europe we will have to comply with new laws protecting individuals personal data (General Data Protection Regulations). Outlook contacts contains all your contacts their phone numbers addresses and other information how can Outlook be made compliant.&nbsp;

cian allner · Answer

https://www.microsoft.com/en-us/TrustCenter/CloudServices/office365/GDPR, though I don't think it specifically mentions Outlook contacts. There are also some great Ignite presentations, such as

GDPR and Office 365

Also, there will be the Compliance Manager that will allow customers to check their environment for GDPR compliance with their Office 365 solutions. It's available in public preview next week with GA January 2018. Hope that helps a bit.

cian allner · Answer

It's an interesting topic, I'm not expert&nbsp;in GDPR, you may need to seek expert guidance and the scope is probably far wider,&nbsp;what about&nbsp;a CRM system for example if you have one or is that's what Outlook is being used&nbsp;for.&nbsp; &nbsp;&nbsp;This has to be policy driven I imagine, much of this you may have already&nbsp;What personal data is being captured&nbsp;Clearly&nbsp;defining the use of any personal data being held and how it is to be usedWhat consent is being given or asked forHow long is this data being kept for, if the customer doesn't order anything for a year, is it reasonable to continue to hold&nbsp;personal data&nbsp;&nbsp;How is the data being controlled&nbsp;or protectedHow regularly is this data checked for compliance and accuracy&nbsp;&nbsp;If customers didn't opt-in for their&nbsp;data to be held specifically&nbsp;for how it's being used, then retrospectively this may need to be obtained and for new customers may have to be new way of doing this.&nbsp; There was one https://www.campaignlive.co.uk/article/gdpr-will-render-75-uk-marketing-data-obsolete/1441738 75% of marketing data UK companies hold would fail GDPR compliance!&nbsp;Anyway, I hope you make some headway in this.&nbsp; &nbsp;Expect a lot more guidance&nbsp;from Microsoft as well such as with this https://products.office.com/en-us/business/modern-workplace/gpdr-impact.

deleted · Answer

Follow Cian's comment and use logic sense in my opinion you should only delete a contact if he or she requests this.

stuart cross · Answer

Thank you both for your input, the law says we should not add a contact without evidence that a contact would be happy to be added to your contacts. Now as most want to buy or sell something from you this shouldn't be difficult. But we do need to show compliance and I&nbsp;am not sure how we can monitor hundreds of email users.

Forum Discussion

Office 365 email how is this effected by GDPR

4 Replies